143 matches found
CVE-2026-1104
The FastDup – Fastest WordPress Migration & Duplicator plugin for WordPress is vulnerable to unauthorized backup creation and download due to a missing capability check on REST API endpoints in all versions up to, and including, 2.7.1. This makes it possible for authenticated attackers, with...
CVE-2025-14501
creationtimestamp| type| source ---|---|--- 2025-12-17 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-1104/...
EUVD-2017-18180
Malware in sbrugna...
CVE-2023-1104
Cross-site Scripting XSS - Stored in GitHub repository flatpressblog/flatpress prior to 1.3...
CVE-2020-1104
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-1105, CVE-2020-1107...
CVE-2008-1104
creationtimestamp| type| source ---|---|--- 2025-02-14 10:00:30+00:00| seen| Telegram/9hWNtUgCkSlmuFM74JGegYdh6v77GMOUobVcXNNji5i72ed- 2025-03-08 04:34:56+00:00| seen| Telegram/pI8S6ayohxQ4zR9VKc1xFdhDE88P2VM1CRs616vVbvFEo0k7...
CVE-2024-1104
An unauthenticated remote attacker can bypass the brute force prevention mechanism and disturb the webservice for all users...
CVE-2024-11999
CWE-1104: Use of Unmaintained Third-Party Components vulnerability exists that could cause complete control of the device when an authenticated user installs malicious code into HMI product...
CVE-2024-11999
CVE-2024-11999 involves CWE-1104: Use of Unmaintained Third-Party Components that could enable complete control of Schneider Electric HMI devices when an authenticated user installs malicious code. The vulnerability affects Schneider Electric Harmony HMI products (e.g., HMIST6, HMIG3U, HMIG3X) an...
CVE-2024-11999
CWE-1104: Use of Unmaintained Third-Party Components vulnerability exists that could cause complete control of the device when an authenticated user installs malicious code into HMI product...
RHEL 7 : Red Hat CloudForms (RHSA-2018:1972)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:1972 advisory. Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual...
CVE-2024-1104
CVE-2024-1104 affects AREAL Topkapi security platform, specifically Webserv2. The vulnerability arises from a bypass of the brute-force protection mechanism, enabling an unauthenticated remote attacker to disturb the webservice for all users. Reports from multiple sources (Topkapi-related CVE ent...
CVE-2024-1104 Temporary denial of service during a brute force attack
An unauthenticated remote attacker can bypass the brute force prevention mechanism and disturb the webservice for all users...
Huawei EulerOS: Security Advisory for gdb (EulerOS-SA-2024-1104)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Malicious code in wlwz-2312-1104 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e9e66ba5fd493bc1e8698e5af37fff100b470a08e7185da4c274733a24380e3b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2023-1104
creationtimestamp| type| source ---|---|--- 2023-03-01 07:33:08+00:00| seen| https://t.me/cibsecurity/59194 2025-03-11 14:39:45+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7150...
CVE-2023-1104 Cross-site Scripting (XSS) - Stored in flatpressblog/flatpress
Cross-site Scripting XSS - Stored in GitHub repository flatpressblog/flatpress prior to 1.3...
CVE-2023-1104
CVE-2023-1104 affects FlatPress (PHP-based blog builder) prior to 1.3. The vulnerability is a stored cross-site scripting (XSS) flaw in the GitHub repo flatpressblog/flatpress, exposed via the admin uploader workflow (uploading files with a .pages extension). The PoC in Huntr shows the server pro...
CVE-2023-1104 Cross-site Scripting (XSS) - Stored in flatpressblog/flatpress
Cross-site Scripting XSS - Stored in GitHub repository flatpressblog/flatpress prior to 1.3...
CVE-2023-1104 Cross-site Scripting (XSS) - Stored in flatpressblog/flatpress
Cross-site Scripting XSS - Stored in GitHub repository flatpressblog/flatpress prior to 1.3...