MiracleLinux 8 : NetworkManager-1.22.8-5.0.1.el8 (AXSA:2020-732:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-732:01 advisory. NetworkManager: user configuration not honoured leaving the connection unauthenticated via insecure defaults CVE-2020-10754 Tenable has extracted the precedin...

CVE-2016-10754

modules/Calendar/Activity.php in Vtiger CRM 6.5.0 allows SQL injection via the contactidlist parameter...

CVE-2025-10754

creationtimestamp| type| source ---|---|--- 2025-10-15 11:32:27+00:00| seen| https://gist.github.com/Darkcrai86/69ab8d1a570cdb2b09d3ca1400494869...

CVE-2025-10754

The CVE-2025-10754 entry concerns the DocoDoco Store Locator WordPress plugin. The vulnerability is an authenticated Arbitrary File Upload due to missing file type validation in the ZIP upload in versions up to 1.0.1. Wordfence notes that authenticated attackers with Editor-level access (or highe...

CVE-2024-10754

A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/assets/plugins/DataTables/media/unittesting/templates/dymanictable.php. The manipulation of the argument scripts leads to cross site...

Linux Distros Unpatched Vulnerability : CVE-2018-10754

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was n...

CVE-2024-10754

creationtimestamp| type| source ---|---|--- 2024-11-04 05:13:56+00:00| seen| https://t.me/cvedetector/9692...

CVE-2024-10754

A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/assets/plugins/DataTables/media/unittesting/templates/dymanictable.php. The manipulation of the argument scripts leads to cross site...

CVE-2024-10754

CVE-2024-10754 | PHPGurukul Online Shopping Portal 2.0 suffers a cross-site scripting flaw in /admin/assets/plugins/DataTables/media/unit_testing/templates/dymanic_table.php. The issue stems from inadequate filtering/escaping of the scripts parameter, enabling remote exploitation. Exploit details...

CVE-2024-10754 PHPGurukul Online Shopping Portal dymanic_table.php cross site scripting

A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/assets/plugins/DataTables/media/unittesting/templates/dymanictable.php. The manipulation of the argument scripts leads to cross site...

RHEL 6 : networkmanager (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - NetworkManager: user configuration not honoured leaving the connection unauthenticated via insecure defaults...

Oracle Linux 8 : NetworkManager (ELSA-2020-3011)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-3011 advisory. 1:1.22.8-5 - dhcp: fix handling IO error in nettools DHCPv4 client rh 1843357 - ifcfg-rh: handle '802-1x.,phase2-ca-path' rh 1843360, CVE-2020-10754 Tenable has...

K000132761: CVE-2020-10754 NetworkManager

Security Advisory Description It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a new profile. When a user connects to a network using this profile, the authentication does not happen and the...

org.apereo.cas:cas-management-webapp-configuration (>=5.3.1 <=5.3.3), org.apereo.cas:cas-management-webapp-support (>=5.2.0-RC2 <=5.3.3) +214 more potentially affected by CVE-2019-10754 via org.apereo.cas:cas-server-core-services-api (>=5.2.0-RC2 <=6.1.0-RC4)

org.apereo.cas:cas-server-core-services-api MAVEN version =5.2.0-RC2, =5.3.1, =5.2.0-RC2, =5.3.1, =6.1.0-RC2, =6.0.0-RC4, =6.0.0-RC4, =5.2.0, =6.0.0, =5.2.0, =5.2.0, =5.3.0, =5.3.0, =5.2.0, =5.2.0, =5.2.0, =6.1.0-RC4 and more Source cves: CVE-2019-10754 Source advisory: OSV:GHSA-G24W-373R-5PXG...

org.apereo.cas:cas-management-webapp-configuration (>=5.3.1 <=5.3.3), org.apereo.cas:cas-management-webapp-support (>=5.2.0-RC2 <=5.3.3) +200 more potentially affected by CVE-2019-10754 via org.apereo.cas:cas-server-core-services-authentication (>=5.2.0-RC2 <=6.1.0-RC4)

org.apereo.cas:cas-server-core-services-authentication MAVEN version =5.2.0-RC2, =5.3.1, =5.2.0-RC2, =5.3.1, =6.1.0-RC2, =6.0.0-RC4, =6.0.0-RC4, =5.2.0, =5.2.0, =5.2.0, =5.3.0, =5.3.0, =5.2.0, =5.2.0, =5.3.0, =5.2.0, =6.1.0-RC4 and more Source cves: CVE-2019-10754 Source advisory:...

org.apereo.cas:cas-server-support-oauth (>=6.1.0-RC2 <=6.1.0-RC4), org.apereo.cas:cas-server-support-oauth-core (>=6.1.0-RC2 <=6.1.0-RC4) +5 more potentially affected by CVE-2019-10754 via org.apereo.cas:cas-server-support-oauth-core-api (>=6.1.0-RC2 <=6.1.0-RC4)

org.apereo.cas:cas-server-support-oauth-core-api MAVEN version =6.1.0-RC2, =6.1.0-RC2, =6.1.0-RC2, =6.1.0-RC2, =6.1.0-RC2, =6.1.0-RC2, =6.1.0-RC2, =6.1.0-RC2, =6.1.0-RC4 Source cves: CVE-2019-10754 Source advisory: OSV:GHSA-G24W-373R-5PXG...

Mageia: Security Advisory (MGASA-2020-0260)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

NewStart CGSL CORE 5.05 / MAIN 5.05 : NetworkManager Vulnerability (NS-SA-2021-0174)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has NetworkManager packages installed that are affected by a vulnerability: - It was found that nmcli, a command line interface to NetworkManager did not honour 802-1x.ca-path and 802-1x.phase2-ca-path settings, when creating a...

Tenda G1 and G3 Buffer Overflow Vulnerability (CNVD-2022-10754)

Tenda G1 and G3 is a router from Tenda, China. Tenda G1 and G3 is vulnerable to a buffer overflow vulnerability, which can be exploited by attackers to execute arbitrary code via a crafted action IPMacBindIndex request...

SUSE: Security Advisory (SUSE-SU-2019:3094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...