CVE-2018-10429

Cosmo 1.0.0Beta6 allows attackers to execute arbitrary PHP code via the Database Prefix field on the Database Info screen of install.php...

CVE-2025-10429

CVE-2025-10429 affects SourceCodester Pet Grooming Management Software 1.0. The vulnerability is a SQL injection in the unknown functionality of the file /admin/ajax_product.php, triggered by manipulating the drop_services argument. It can be exploited remotely and publicly disclosed. Affected pr...

CVE-2024-10429

creationtimestamp| type| source ---|---|--- 2024-10-27 22:35:39+00:00| seen| https://t.me/cvedetector/9067 2025-10-01 18:11:57+00:00| seen| MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6 2025-10-08 21:59:31+00:00| seen| MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6...

CVE-2024-10429 WAVLINK WN530H4/WN530HG4/WN572HG3 internet.cgi set_ipv6 command injection

A vulnerability classified as critical has been found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. Affected is the function setipv6 of the file internet.cgi. The manipulation of the argument IPv6OpMode/IPv6IPAddr/IPv6WANIPAddr/IPv6GWAddr leads to command injection. It is possible to...

Microsoft Office Remote Code Execution Vulnerability (CNVD-2024-10429)

Microsoft Office is a suite of office software based on the Windows operating system developed by Microsoft. A remote code execution vulnerability exists in Microsoft Office, which can be exploited by an attacker to execute arbitrary code on a system...

CVE-2020-10429

CVE-2020-10429 affects Chadha PHPKB Standard Multi-Language 9. The vulnerability arises from how URIs are handled in admin/header.php, enabling Reflected XSS in admin/manage-settings.php when a payload is appended after a question mark. The description notes injection of arbitrary scripts/HTML vi...

CVE-2019-10429

Jenkins GitLab Logo Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

CVE-2019-10429

Jenkins GitLab Logo Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

CVE-2019-10429

The CVE refers to the Jenkins GitLab Logo Plugin, where credentials are stored unencrypted in the plugin’s or Jenkins master’s global configuration file. The underlying issue is that sensitive data is kept in plaintext on the Jenkins master filesystem and could be viewed by users with access to t...

CVE-2018-10429

Cosmo 1.0.0Beta6 allows attackers to execute arbitrary PHP code via the Database Prefix field on the Database Info screen of install.php...

CVE-2018-10429

Cosmo CMS 1.0.0Beta6 is affected by CVE-2018-10429. The vulnerability allows an attacker to execute arbitrary PHP code via the Database Prefix field on the Database Info screen of install.php. This is evidenced by multiple connected records (Red Hat, CNVD, NVD, OSV, CVE listings) describing the s...

CVE-2016-10429

CVE-2016-10429 concerns Android devices (Qualcomm Small Cell SoC, Snapdragon variants, and listed SD/X platforms) where, prior to the 2018-04-05 security patch level, three image types are loaded in the same manner without distinguishing them. The connected documents confirm the vulnerability des...