CVE-2026-32968

Due to the improper neutralisation of special elements used in an OS command, an unauthenticated remote attacker can exploit an RCE vulnerability in the commb24sysapi module, resulting in full system compromise. This vulnerability is a variant attack for CVE-2020-10383...

CVE-2026-32968 Unauthenticated RCE in com_mb24sysapi

Due to the improper neutralisation of special elements used in an OS command, an unauthenticated remote attacker can exploit an RCE vulnerability in the commb24sysapi module, resulting in full system compromise. This vulnerability is a variant attack for CVE-2020-10383...

PT-2026-27108

Due to the improper neutralisation of special elements used in an OS command, an unauthenticated remote attacker can exploit an RCE vulnerability in the com mb24sysapi module, resulting in full system compromise. This vulnerability is a variant attack for CVE-2020-10383...

CVE-2025-10383

creationtimestamp| type| source ---|---|--- 2025-10-04 04:04:00+00:00| seen| Telegram/6M5IsBEAoeQxwoKRzyqD9g3vJtK2vl8eHMFK2hb61IHbPo...

Linux Distros Unpatched Vulnerability : CVE-2024-10383

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in the gitlab-web-ide-vscode-fork component distributed over CDN affecting all versions prior to 1.89.1-1.0.0-dev-20241118094343and...

CVE-2014-10383

The memphis-documents-library plugin before 3.0 for WordPress has Remote File Inclusion...

CVE-2024-10383

An issue has been discovered in the gitlab-web-ide-vscode-fork component distributed over CDN affecting all versions prior to 1.89.1-1.0.0-dev-20241118094343and used by all versions of GitLab CE/EE starting from 15.11 prior to 17.3 and which also temporarily affected versions 17.4, 17.5 and 17.6,...

CVE-2024-10383

An issue has been discovered in the gitlab-web-ide-vscode-fork component distributed over CDN affecting all versions prior to 1.89.1-1.0.0-dev-20241118094343and used by all versions of GitLab CE/EE starting from 15.11 prior to 17.3 and which also temporarily affected versions 17.4, 17.5 and 17.6,...

CVE-2024-10383

creationtimestamp| type| source ---|---|--- 2025-02-07 14:22:48+00:00| seen| https://infosec.exchange/users/cve/statuses/113963051802726453 2025-02-07 15:15:46+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhlvemsdp32x 2025-02-07 16:48:39+00:00| seen|...

CVE-2024-10383

The CVE-2024-10383 entry concerns the gitlab-web-ide-vscode-fork component distributed over CDN. Affected versions include all prior to 1.89.1-1.0.0-dev-20241118094343 and used by GitLab CE/EE from 15.11 up to 17.3, with temporary impact on 17.4–17.6. The issue is described as a Cross-Site Script...

ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1574 more potentially affected by CVE-2019-10383 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.17)

org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2019-10383 Source advisory: OSV:GHSA-9M48-54PJ-H248...

CVE-2020-10383

creationtimestamp| type| source ---|---|--- 2020-04-14 20:44:24+00:00| seen| https://t.me/cibsecurity/11225 2026-03-24 03:00:05+00:00| seen| https://certvde.com/de/advisories/VDE-2026-025 2026-03-24 03:00:06+00:00| seen| https://certvde.com/en/advisories/VDE-2026-024/...

CVE-2020-10383

An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. There is an unauthenticated remote code execution in the commb24sysapi module...

CVE-2020-10383

An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. There is an unauthenticated remote code execution in the commb24sysapi module...

CVE-2020-10383

The CVE-2020-10383 issue affects MB CONNECT LINE mbCONNECT24 and mymbCONNECT24 software up to version 2.5.0. The vulnerability is an unauthenticated remote code execution in the com_mb24sysapi module, allowing an attacker to execute arbitrary code remotely. Affected versions include mbCONNECT24 p...

RHEL 7 : OpenShift Container Platform 3.11 jenkins (RHSA-2019:3144)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:3144 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or privat...

FreeBSD : jenkins -- multiple vulnerabilities (7a7891fc-6318-447a-ba45-31d525ec11a0)

Jenkins Security Advisory : DescriptionMedium SECURITY-1453 / CVE-2019-10383 Stored XSS vulnerability in update center High SECURITY-1491 / CVE-2019-10384 CSRF protection tokens for anonymous users did not expire in some circumstances C Tenable Network Security, Inc. The descriptive text and...

CVE-2019-10383

A stored cross-site scripting vulnerability in Jenkins 2.191 and earlier, LTS 2.176.2 and earlier allowed attackers with Overall/Administer permission to configure the update site URL to inject arbitrary HTML and JavaScript in update center web pages...

CVE-2019-10383

CVE-2019-10383 is a stored XSS in Jenkins up to 2.191 (LTS up to 2.176.2) where an attacker with Overall/Administer permissions can abuse the update center URL to inject HTML/JavaScript in update center pages. Affected component is Jenkins update center handling; root cause is insufficient escapi...

CVE-2014-10383

creationtimestamp| type| source ---|---|--- 2019-08-22 18:28:45+00:00| seen| https://t.me/cibsecurity/6301...