EUVD-2025-35093

Heap-based Buffer Overflow vulnerability in ABB Terra AC wallbox UL40/80A, ABB Terra AC wallbox UL32A, ABB Terra AC wallbox MID/ CE -Terra AC MID, ABB Terra AC wallbox MID/ CE -Terra AC Juno CE, ABB Terra AC wallbox MID/ CE -Terra AC PTB, ABB Terra AC wallbox JP.This issue affects Terra AC wallbo...

CVE-2025-5517

Heap-based Buffer Overflow vulnerability in ABB Terra AC wallbox UL40/80A, ABB Terra AC wallbox UL32A, ABB Terra AC wallbox MID/ CE -Terra AC MID, ABB Terra AC wallbox MID/ CE -Terra AC Juno CE, ABB Terra AC wallbox MID/ CE -Terra AC PTB, ABB Terra AC wallbox JP.This issue affects Terra AC wallbo...

ABB多款产品 安全漏洞

The ABB Terra AC wallbox is ABB's superior EV home charger, offering high value quality, future-proof flexibility, and advanced security and protection. A security vulnerability exists in several ABB products, which originates from a heap buffer overflow. The following products and versions are...

EUVD-2024-30385

Malicious code in bioql PyPI...

CVE-2024-32583

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Photo Gallery Team Photo Gallery by 10Web allows Reflected XSS.This issue affects Photo Gallery by 10Web: from n/a through 1.8.21...

CVE-2024-49416

Use of implicit intent for sensitive communication in SmartThings prior to version 1.8.21 allows local attackers to get sensitive information...

CVE-2024-49416

Use of implicit intent for sensitive communication in SmartThings prior to version 1.8.21 allows local attackers to get sensitive information...

SAMSUNG SmartThings 安全漏洞

SAMSUNG SmartThings is an app for connectable smart devices from Samsung South Korea. A security vulnerability exists in SAMSUNG SmartThings versions prior to 1.8.21, which stems from the use of implicit intent for sensitive communications, allowing a local attacker to obtain sensitive informatio...

WordPress Photo Gallery by 10Web Plugin <= 1.8.20 is vulnerable to Broken Access Control

Software Photo Gallery by 10Web Type Plugin Vulnerable versions = 1.8.20 Fixed in 1.8.21 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-33586 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 9de61c674191 Credits Steven Julian Requir...

CVE-2024-32583

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Photo Gallery Team Photo Gallery by 10Web allows Reflected XSS.This issue affects Photo Gallery by 10Web: from n/a through 1.8.21...

PT-2024-24705 · 10Web · Photo Gallery

Name of the Vulnerable Software and Affected Versions: Photo Gallery by 10Web versions 1.8.21 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS. Recommendations: For...

WordPress Plugin Photo Gallery by 10Web 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

WordPress Photo Gallery by 10Web plugin <= 1.8.21 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin Photo Gallery by 10Web versions = 1.8.21...

WordPress Photo Gallery by 10Web Plugin <= 1.8.21 is vulnerable to Cross Site Scripting (XSS)

Software Photo Gallery by 10Web Type Plugin Vulnerable versions = 1.8.21 Fixed in 1.8.22 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2296 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID db9d53f79206 Credits Jobert Krohnen...

MyBB Cross-Site Scripting Vulnerability (CNVD-2019-18514)

MyBB MyBulletinBoard is a free and Web-based forum software developed by MyBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A cross-site scripting vulnerability exists in MyBB versions prior to 1.8.21. The vulnerability stems...

CVE-2019-12830

In MyBB before 1.8.21, an attacker can exploit a parsing flaw in the Private Message / Post renderer that leads to video BBCode persistent XSS to take over any forum account, aka a nested video MyCode issue...

CVE-2019-12830

CVE-2019-12830 affects MyBB releases before 1.8.21. A parsing flaw in the Private Message / Post renderer allows a crafted [video] BBCode to cause persistent XSS, enabling an attacker to take over a user’s forum account. The issue is described across multiple sources (NVD entry and Red Hat/CNVD v...