lakefs (>=0.1.0 <=0.1.0b4) potentially affected by CVE-2024-43784 via lakefs-sdk (=1.1.0.2)

lakefs-sdk PYPI version =1.1.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on lakefs-sdk and may be impacted: - lakefs =0.1.0, =0.1.0b4 Source cves: CVE-2024-43784 Source advisory: SNYK:PYTHON-LAKEFSSDK-8441273...

CVE-2020-36746

The Menu Swapper plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.0.2. This is due to missing or incorrect nonce validation on the mswpsavemeta function. This makes it possible for unauthenticated attackers to save meta data via a forged reque...

ASUS DSL-N17U License Issue Vulnerability

The ASUS DSL-N17U is a router from the Chinese company ASUS. An authorization issue vulnerability exists in the ASUS DSL-N17U modem with firmware version 1.1.0.2, which stems from a lack of authentication measures or insufficient authentication strength. An unauthenticated attacker can change the...

Authentication flaw

The ASUS DSL-N17U modem with firmware 1.1.0.2 allows attackers to access the admin interface by changing the admin password without authentication via a POST request to AdvancedSystemContent.asp with the uiViewToolsusername=admin&uiViewToolsPassword= and uiViewToolsPasswordConfirm= substrings...

CVE-2020-35219

The CVE-2020-35219 issue affects the ASUS DSL-N17U modem with firmware 1.1.0.2. The vulnerability allows an unauthenticated attacker to change the admin password and gain admin access by issuing a POST to Advanced_System_Content.asp with uiViewTools_username=admin, uiViewTools_Password=, and uiVi...

BD ReadA Design Vulnerability

BD ReadA is a browser software used in BD products from BD Bection, Dickinson and Commpany in the United States. A security vulnerability exists in BD ReadA 1.1.0.2 and earlier versions. The vulnerability can be exploited by an attacker to issue SQL commands, resulting in data corruption or loss...

CVE-2018-10595

A vulnerability in ReadA version 1.1.0.2 and previous allows an authorized user with access to a privileged account on a BD Kiestra system Kiestra TLA, Kiestra WCA, and InoqulA+ specimen processor to issue SQL commands, which may result in loss or corruption of data...

CVE-2018-10595

A vulnerability in ReadA version 1.1.0.2 and previous allows an authorized user with access to a privileged account on a BD Kiestra system Kiestra TLA, Kiestra WCA, and InoqulA+ specimen processor to issue SQL commands, which may result in loss or corruption of data...