EUVD-2019-13214

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2020-5208

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer...

CVE-2019-3578

MyBB 1.8.19 has XSS in the resetpassword function...

CVE-2024-0221

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.8.19 via the renameitem function. This makes it possible for authenticated attackers to rename arbitrary files on the server. This can lead ...

WordPress Photo Gallery by 10Web Plugin <= 1.8.19 is vulnerable to Directory Traversal

Software Photo Gallery by 10Web Type Plugin Vulnerable versions = 1.8.19 Fixed in 1.8.20 OWASP Top 10 A4: Insecure Design Classification Directory Traversal CVE CVE-2024-0221 Patch priority Low CVSS severity Low 9.1 Developer Claim ownership PSID 29011d5256be Credits Bence Szalai Required privile...

PT-2023-19497 · Unknown · Laravel-Admin

Name of the Vulnerable Software and Affected Versions: laravel-admin version 1.8.19 Description: An arbitrary file upload vulnerability allows attackers to execute arbitrary code via a crafted PHP file. This issue has been exploited in real-world attacks, including a reported instance where an...

SUSE CVE-2017-9800

A maliciously constructed svn+ssh:// URL would cause Subversion clients before 1.8.19, 1.9.x before 1.9.7, and 1.10.0.x through 1.10.0-alpha3 to run an arbitrary shell command. Such a URL could be generated by a malicious server, by a malicious user committing to a honest server to attack another...

EulerOS Virtualization for ARM 64 3.0.2.0 : ipmitool (EulerOS-SA-2020-1534)

According to the version of the ipmitool package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a...

AZL-6489 CVE-2020-5208 affecting package ipmitool for versions less than 1.8.18-21

It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged...

DEBIAN-CVE-2020-5208

It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged...

CVE-2020-5208 remote code execution vulnerability in ipmitool

It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged...

CVE-2020-5208

It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged...

PT-2020-3610 · Ipmitool +6 · Ipmitool +6

Name of the Vulnerable Software and Affected Versions: ipmitool versions prior to 1.8.19 Description: The issue arises from multiple functions in ipmitool neglecting proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code...

MyBB Cross-Site Scripting Vulnerability (CNVD-2019-16947)

MyBB MyBulletinBoard is a free and Web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A cross-site scripting vulnerability exists in MyBB version 1.8.19, which can be exploited by attacker...

MyBB Information Disclosure Vulnerability (CNVD-2019-16948)

MyBB MyBulletinBoard is a free and Web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. An information disclosure vulnerability exists in MyBB version 1.8.19, which can be exploited by...

CVE-2019-3579

MyBB 1.8.19 allows remote attackers to obtain sensitive information because it discloses the username upon receiving a password-reset request that lacks the code parameter...

CVE-2019-3578

CVE-2019-3578 affects MyBB 1.8.19 and is a Cross-Site Scripting (XSS) vulnerability in the resetpassword function. The available connected documents indicate the issue is an XSS in the resetpassword flow, enabling potential execution of client-side code. Details do not specify attack vectors beyo...

CVE-2019-3578

MyBB 1.8.19 has XSS in the resetpassword function...

PT-2019-16627 · Mybb · Mybb

Name of the Vulnerable Software and Affected Versions: MyBB version 1.8.19 Description: The issue allows remote attackers to obtain sensitive information. This occurs because the software discloses the username when it receives a password-reset request that lacks the code parameter...

MyBB <= 1.8.19 Multiple XSS Vulnerabilities

MyBB is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mybb:mybb";...