14 matches found
CVE-2020-10421
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-departments.php by adding a question mark ? followed by the payload...
CVE-2024-10421
creationtimestamp| type| source ---|---|--- 2024-10-27 19:14:55+00:00| seen| https://t.me/cvedetector/9060...
CVE-2024-10421 SourceCodester Attendance and Payroll System overtime_row.php sql injection
A vulnerability classified as critical was found in SourceCodester Attendance and Payroll System 1.0. This vulnerability affects unknown code of the file /admin/overtimerow.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-10421 SourceCodester Attendance and Payroll System overtime_row.php sql injection
A vulnerability classified as critical was found in SourceCodester Attendance and Payroll System 1.0. This vulnerability affects unknown code of the file /admin/overtimerow.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-10421
CVE-2024-10421 affects SourceCodester Attendance and Payroll System 1.0. Affects code in the file /admin/overtime_row.php where manipulating the id parameter leads to SQL injection. The attack can be initiated remotely and the exploit has been disclosed publicly. Reported impacts indicate potenti...
Oracle Linux 5 : ELSA-2015-1042-1: / kernel (ELSA-2015-10421)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-10421 advisory. - The 1 piperead and 2 pipewrite implementations in fs/pipe.c in the Linux kernel before 3.16 do not properly consider the side effects of failed...
CVE-2020-10421
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/manage-departments.php by adding a question mark ? followed by the payload...
CVE-2020-10421
CVE-2020-10421 concerns Chadha PHPKB Standard Multi-Language 9, where URIs are mishandled in admin/header.php, enabling a Reflected XSS in admin/manage-departments.php by appending a payload after a question mark. The description indicates the vulnerability arises from how the URI is processed, a...
CVE-2019-10421
Jenkins Azure Event Grid Build Notifier Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2019-10421
Jenkins Azure Event Grid Build Notifier Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...
CVE-2016-10421
CVE-2016-10421 is tied to Android devices using Qualcomm AMSS/closed‑source components. The root cause is improper clearing of key material. The CVE is listed in the 2014–2016 Qualcomm cumulative update, with a High severity rating in that context. Public Android bulletin coverage for this issue ...
CVE-2017-10421
Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications subcomponent: Leisure. Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2017-10421
CVE-2017-10421 affects the Oracle Hospitality Suite8 Leisure component. Affected versions are 8.10.1 and 8.10.2. The vulnerability is exploitable by a low-privileged attacker with network access via HTTP, potentially leading to unauthorized access to critical data or complete access to all Oracle...
Apache Tomcat Security Manager Security Restriction Bypass Vulnerability (CNVD-2016-10421)
Apache Tomcat is a popular open source JSP application server program. Apache Tomcat 7.0.0-7.0.70 suffers from a security restriction bypass vulnerability in its implementation. An attacker can exploit this vulnerability to bypass certain security restrictions and perform unauthorized operations...