CVE-2026-0715

creationtimestamp| type| source ---|---|--- 2026-02-06 03:27:17+00:00| seen| https://bsky.app/profile/cyber-news-fi.bsky.social/post/3me5xiuowra2b 2026-02-06 13:26:19+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/control-systems-moxa-security-advisory-av26-094 2026-02-06 13:50:12+00:00|...

CVE-2022-0715

A CWE-287: Improper Authentication vulnerability exists that could cause an attacker to arbitrarily change the behavior of the UPS when a key is leaked and used to upload malicious firmware. Affected Product: APC Smart-UPS Family: SMT Series SMT Series ID=18: UPS 09.8 and prior / SMT Series...

EUVD-2026-0715

A vulnerability was determined in Yonyou KSOA 9.0. The impacted element is an unknown function of the file /worksheet/deluser.jsp of the component HTTP GET Parameter Handler. Executing manipulation of the argument ID can lead to sql injection. The attack can be executed remotely. The exploit has...

Photon OS 5.0: Linux PHSA-2025-5.0-0715

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0715. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

ECHO-0715-D1D1-1984

Bulletin has no description...

CVE-2005-0715

AFP Server in Mac OS X before 10.3.8 uses insecure permissions for "Drop Boxes," which allows local users to read the contents of a Drop Box...

Splunk Enterprise 9.0.0 < 9.0.10, 9.1.0 < 9.1.5, 9.2.0 < 9.2.2 (SVD-2024-0715)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2024-0715 advisory. - In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.200 and...

EL Injection Vulnerability in Hitachi Global Link Manager

Overview An EL Injection Vulnerability CVE-2024-0715 exists in Hitachi Global Link Manager. Affected products and versions are listed below. Please upgrade your version to the appropriate version. Impact Regarding the impact of the vulnerability, please refer to the vendor advisory. Solution Plea...

CVE-2024-0715

creationtimestamp| type| source ---|---|--- 2024-02-20 03:31:44+00:00| seen| https://t.me/ctinow/188070 2024-02-20 03:31:59+00:00| seen| https://t.me/ctinow/188079 2024-02-21 07:05:51+00:00| seen| https://t.me/arpsyndicate/3710 2025-02-14 10:05:08+00:00| seen|...

CVE-2024-0715

Expression Language Injection vulnerability in Hitachi Global Link Manager on Windows allows Code Injection.This issue affects Hitachi Global Link Manager: before 8.8.7-03...

CVE-2024-0715 EL Injection Vulnerability in Hitachi Global Link Manager

Expression Language Injection vulnerability in Hitachi Global Link Manager on Windows allows Code Injection.This issue affects Hitachi Global Link Manager: before 8.8.7-03...

CVE-2024-0715 EL Injection Vulnerability in Hitachi Global Link Manager

Expression Language Injection vulnerability in Hitachi Global Link Manager on Windows allows Code Injection.This issue affects Hitachi Global Link Manager: before 8.8.7-03...

CVE-2024-0715

CVE-2024-0715 affects Hitachi Global Link Manager on Windows prior to 8.8.7-03. The issue is an Expression Language Injection that allows code injection due to inadequate neutralization of expressions in the language operator. Reported impact indicates potential arbitrary code execution with netw...

Moderate Photon OS Security Update - PHSA-2024-3.0-0715

Updates of 'glibc' packages of Photon OS have been released...

SUSE CVE-2011-0715

The moddavsvn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.16, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a request that contains a lock token...

CVE-2023-0715

creationtimestamp| type| source ---|---|--- 2023-02-08 07:23:57+00:00| seen| https://t.me/cibsecurity/57752...

CVE-2023-0715

CVE-2023-0715 affects the WordPress plugin Wicked Folders up to version 2.18.16 . The root cause is a missing capability check in the ajax_clone_folder function, enabling authenticated users with subscriber-level permissions and above to perform administrator-level actions, such as modifying the ...

CVE-2023-0715 Wicked Folders <= 2.18.16 - Missing Authorization on ajax_clone_folder

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxclonefolder function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to invoke thi...

CVE-2023-0715 Wicked Folders <= 2.18.16 - Missing Authorization on ajax_clone_folder

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxclonefolder function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to invoke thi...

WordPress Wicked Folders Plugin <= 2.18.16 is vulnerable to Broken Access Control

Software Wicked Folders Type Plugin Vulnerable versions = 2.18.16 Fixed in 2.18.17 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-0715 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID bf9e7164b8aa Credits Marco Wotschka Requir...