CVE-2020-10456

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/trash-box.php by adding a question mark ? followed by the payload...

CVE-2025-10456

creationtimestamp| type| source ---|---|--- 2025-09-19 08:11:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lz6g4vslqa2i...

CVE-2019-10456

A cross-site request forgery vulnerability in Jenkins Oracle Cloud Infrastructure Compute Classic Plugin allows attackers to connect to an attacker-specified URL using attacker-specified credentials...

CVE-2024-10456 Delta Electronics InfraSuite Device Master Deserialization of Untrusted Data

Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a deserialization vulnerability that targets the Device-Gateway, which could allow deserialization of arbitrary .NET objects prior to authentication...

CVE-2024-10456

creationtimestamp| type| source ---|---|--- 2024-10-29 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-303-03 2024-10-30 20:03:08+00:00| seen| https://t.me/cvedetector/9455 2024-11-06 06:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1457/...

CVE-2020-10456

CVE-2020-10456 affects Chadha PHPKB Standard Multi-Language 9. The issue arises from how URIs are processed in admin/header.php, enabling a Reflected XSS via admin/trash-box.php (and related admin pages) by appending a ? payload to the URI. Red Hat CVEs RH:CVE-2020-10456 similarly describe the sa...

CVE-2019-10456

A cross-site request forgery vulnerability in Jenkins Oracle Cloud Infrastructure Compute Classic Plugin allows attackers to connect to an attacker-specified URL using attacker-specified credentials...

CVE-2019-10456

CVE-2019-10456 is a CSRF vulnerability in the Jenkins Oracle Cloud Infrastructure Compute Classic Plugin. The issue arises because a method implementing form validation lacks proper permission checks, allowing users with Overall/Read access to initiate a connection test to an attacker‑specified U...

CVE-2019-10456

A cross-site request forgery vulnerability in Jenkins Oracle Cloud Infrastructure Compute Classic Plugin allows attackers to connect to an attacker-specified URL using attacker-specified credentials...

CVE-2016-10456

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9615, MDM9635M, MDM9640, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 600, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD...

CVE-2016-10456

CVE-2016-10456 affects Android on Qualcomm Snapdragon Mobile and Snapdragon Wear platforms (numerous SoCs listed in the description). The issue arises when the radish component is run with an invalid network interface name, allowing an arbitrary command of up to 15 characters to be executed as a ...