Azure Linux 3.0 Security Update: puppet (CVE-2015-1029)

The version of puppet installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2015-1029 advisory. - The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlie...

EUVD-2026-1029

SnapGear Management Console SG560 3.1.5 contains a file manipulation vulnerability that allows authenticated users to read, write, and delete files using the editconfigfiles CGI script. Attackers can manipulate POST request parameters in /cgi-bin/cgix/editconfigfiles to access and modify files...

CVE-2025-1029 Hardcoded Credentials in Utarit Informatics' SoliClub

Use of Hard-coded Credentials vulnerability in Utarit Information Services Inc. SoliClub allows Read Sensitive Constants Within an Executable. This issue affects SoliClub: from 5.2.4 before 5.3.7...

CVE-2022-1029

creationtimestamp| type| source ---|---|--- 2025-12-12 13:44:20+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2022/CVE-2022-1029.yaml...

CVE-2025-13707

creationtimestamp| type| source ---|---|--- 2025-12-01 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-1029/...

EUVD-2006-6990

Malware in sbrugna...

CVE-2021-1029

In setClientStateLocked of SurfaceFlinger.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

CVE-2013-1029

The kernel in Apple Mac OS X before 10.8.5 allows remote attackers to cause a denial of service panic via crafted IGMP packets that leverage incorrect, extraneous code in the IGMP parser...

CVE-2015-1029 affecting package puppet for versions less than 7.34.0-1

CVE-2015-1029 affecting package puppet for versions less than 7.34.0-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-1029

creationtimestamp| type| source ---|---|--- 2024-01-30 07:32:02+00:00| seen| https://t.me/ctinow/175714 2024-02-21 14:41:56+00:00| seen| https://t.me/ctinow/189638...

CVE-2024-1029

A vulnerability was found in Cogites eReserv 7.7.58 and classified as problematic. Affected by this issue is some unknown functionality of the file /front/admin/tenancyDetail.php. The manipulation of the argument Nom with the input Dreux"alert'XSS' leads to cross site scripting. The attack may be...

CVE-2024-1029

CVE-2024-1029 affects Cogites eReserv 7.7.58. The vulnerability lies in the web URI parameter Nom within /front/admin/tenancyDetail.php , where crafted input such as Dreux"> can trigger a cross-site scripting condition. Exploitation is described as remote, and the exploit has been publicly dis...

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2024-1029)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress WP Meta SEO Plugin <= 4.5.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP Meta SEO Type Plugin Vulnerable versions = 4.5.3 Fixed in 4.5.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-1029 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID e41d91f1ddfe Credits Marco Wotschka Required...

CVE-2023-1029

creationtimestamp| type| source ---|---|--- 2023-02-24 22:19:24+00:00| seen| https://t.me/cibsecurity/58890...

CVE-2023-1029

The WP Meta SEO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.5.3. This is due to missing or incorrect nonce validation on the regenerateSitemaps function. This makes it possible for unauthenticated attackers to regenerate Sitemaps via a forg...

CVE-2023-1029

CVE-2023-1029 affects the WP Meta SEO WordPress plugin, versions

CVE-2023-1029

The WP Meta SEO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.5.3. This is due to missing or incorrect nonce validation on the regenerateSitemaps function. This makes it possible for unauthenticated attackers to regenerate Sitemaps via a forg...

CVE-2022-1029 Limit Login Attempts < 4.0.72 - Admin+ Stored Cross-Site Scripting

The Limit Login Attempts WordPress plugin before 4.0.72 does not sanitise and escape some of its settings, leading to malicious users with administrator privileges to store malicious Javascript code leading to Cross-Site Scripting attacks when unfilteredhtml is disallowed for example in multisite...

CVE-2022-1029

The CVE-2022-1029 entry corresponds to a stored XSS in the Limit Login Attempts WordPress plugin prior to 4.0.72. The vulnerability arises from unsanitized/unescaped settings, enabling administrators to inject JavaScript when unfiltered_html is disallowed (e.g., multisite). Connected documents pr...