CVE-2025-10816

CVE-2025-10816 affects Jinher OA 2.0. The issue is in the XML Handler’s GetWordFileName.aspx functionality (path: /c6/Jhsoft.Web.module/ToolBar/GetWordFileName.aspx/?text=GetUrl&style=add) where input manipulation can trigger an XML External Entity (XXE) attack. The vulnerability is exploitable r...

CVE-2024-10816

creationtimestamp| type| source ---|---|--- 2024-11-13 05:48:00+00:00| seen| https://t.me/cvedetector/10794...

CVE-2024-10816 LUNA RADIO PLAYER <= 6.24.01.24 - Unauthenticated Arbitrary File Read

The LUNA RADIO PLAYER plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 6.24.01.24 via the js/fallback.php file. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive...

WordPress Luna Web Radio Player Plugin <= 6.24.01.24 is vulnerable to Directory Traversal

Software Luna Web Radio Player Type Plugin Vulnerable versions = 6.24.01.24 Fixed in 6.24.11.07 OWASP Top 10 A3: Injection Classification Directory Traversal CVE CVE-2024-10816 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID 24e0a47712fe Credits Tonn Required privilege...

CVE-2020-10816

creationtimestamp| type| source ---|---|--- 2020-10-08 20:30:57+00:00| seen| https://t.me/cibsecurity/15161...

CVE-2020-10816

Zoho ManageEngine Applications Manager (versions 14780 and earlier) contains an unauthenticated remote-registration flaw in the AAMRequestProcessor servlet that lets an attacker register a managed server. This is evidenced by CVE-2020-10816 entries in NVD and CNVD; the description specifies the v...

CVE-2016-10816

CVE-2016-10816 affects cPanel prior to 57.9999.54, where Webmail accounts can execute arbitrary code via forwarders. Public sources confirm the issue exists in these versions; Red Hat, CNVD, and CVE listings corroborate the vulnerability description. The root cause and affected scope are tied to ...

CVE-2017-10816

SQL injection vulnerability in the MaLion for Windows and Mac 5.0.0 to 5.2.1 allows remote attackers to execute arbitrary SQL commands via Relay Service Server...

CVE-2017-10816

Affected products: Intercom MaLion for Windows and MaLion for Mac (versions 5.0.0–5.2.1). Vulnerability: SQL injection via the Relay Service Server. Impact (as stated): remote attacker can execute arbitrary SQL commands. This vulnerability is documented across multiple sources (CNVD/NVD) with the...

CVE-2017-10816

SQL injection vulnerability in the MaLion for Windows and Mac 5.0.0 to 5.2.1 allows remote attackers to execute arbitrary SQL commands via Relay Service Server...