CVE-2018-10574

site/index.php/admin/trees/add/ in BigTree 4.2.22 and earlier allows remote attackers to upload and execute arbitrary PHP code because the BigTreeStorage class in core/inc/bigtree/apis/storage.php does not prevent uploads of .htaccess files...

CVE-2020-10574

An issue was discovered in Janus through 0.9.1. janus.c tries to use a string that doesn't actually exist during a "querylogger" Admin API request, because of a typo in the JSON validation...

EUVD-2018-10574

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2020-10574

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Janus through 0.9.1. janus.c tries to use a string that doesn't actually exist during a querylogger Admin API request, because of a...

CVE-2019-10574

Lack of boundary checks for data offsets received from HLOS can lead to out-of-bound read in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdrago...

CVE-2024-10574

The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ayssavegooglecredentials' function in all versions up to, and including, 8.8.0 Business, up to, and including, 21.8.0 Developer, and up...

CVE-2024-10574

CVE-2024-10574 details (WordPress Quiz Maker plugins): The vulnerability arises from a missing capability check in the ays_save_google_credentials function, allowing unauthenticated modification of Google Sheets credentials in Quiz Maker Business, Developer, and Agency plugins for WordPress. Affe...

CVE-2024-10574 Quiz Maker Business, Developer, and Agency <= (Multiple Versions) - Missing Authorization to Google Sheets Integration Credentials Modification and Stored Cross-Site Scripting

The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ayssavegooglecredentials' function in all versions up to, and including, 8.8.0 Business, up to, and including, 21.8.0 Developer, and up...

CVE-2024-10574 Quiz Maker Business, Developer, and Agency <= (Multiple Versions) - Missing Authorization to Google Sheets Integration Credentials Modification and Stored Cross-Site Scripting

The Quiz Maker Business, Developer, and Agency plugins for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ayssavegooglecredentials' function in all versions up to, and including, 8.8.0 Business, up to, and including, 21.8.0 Developer, and up...

CVE-2019-10574

Lack of boundary checks for data offsets received from HLOS can lead to out-of-bound read in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdrago...

CVE-2019-10574

CVE-2019-10574 describes a vulnerability due to lack of boundary checks for data offsets from HLOS, enabling an out-of-bounds read in Qualcomm-derived platforms (Snapdragon family such as Auto, Compute, Connectivity, etc.). The NVD entry lists affected Qualcomm/SoC families (APQ8009, SDM8xx, SM8x...

CVE-2020-10574

An issue was discovered in Janus through 0.9.1. janus.c tries to use a string that doesn't actually exist during a "querylogger" Admin API request, because of a typo in the JSON validation...

CVE-2020-10574

An issue was discovered in Janus through 0.9.1. janus.c tries to use a string that doesn't actually exist during a "querylogger" Admin API request, because of a typo in the JSON validation...

CVE-2020-10574

Mode C: Concrete details found. The CVE-2020-10574 issue affects Meetecho Janus WebRTC gateway (up to version 0.9.1) where janus.c attempts to use a string that does not exist during a query_logger Admin API request, caused by a typo in the JSON validation. This is the described root cause. The p...

CVE-2019-10574

creationtimestamp| type| source ---|---|--- 2019-11-18 19:45:45+00:00| published-proof-of-concept| https://t.me/antichat/7071 2020-04-16 17:02:33+00:00| seen| https://t.me/cibsecurity/11340 2026-01-20 08:05:01+00:00| seen| https://infosec.exchange/users/certvde/statuses/115926387351405846...

CVE-2016-10574

apk-parser3 is a module to extract Android Manifest info from an APK file. apk-parser3 versions before 0.1.3 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker...

CVE-2016-10574

apk-parser3 is a module to extract Android Manifest info from an APK file. apk-parser3 versions before 0.1.3 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker...

CVE-2016-10574

apk-parser3 before 0.1.3 downloads binary resources over HTTP, enabling MITM tampering and potential remote code execution if an attacker can swap the binary between the user and the server. Affected component: apk-parser3 (Android Manifest extraction feature). Impact per sources: code execution ...

CVE-2018-10574

The CVE-2018-10574 entry pertains to BigTree CMS