openSUSE Security Advisory (SUSE-SU-2026:1107-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-1107

creationtimestamp| type| source ---|---|--- 2025-09-12 07:38:49+00:00| seen| Telegram/qW1aw0ly-HgPITfppY54Gb49rKUhnsfEaGwVyiOmPFFZrPw...

CVE-2022-1107

During an internal product security audit a potential vulnerability due to use of Boot Services in the SmmOEMInt15 SMI handler was discovered in some ThinkPad models could be exploited by an attacker with elevated privileges that could allow for execution of code...

CVE-2020-1107

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-1104, CVE-2020-1105...

CVE-2013-1107

The search function in Cisco Webex Social formerly Cisco Quad allows remote authenticated users to read files via unspecified parameters, aka Bug ID CSCud40235...

CVE-2025-1107 Unverified password change vulnerability in Janto

Unverified password change vulnerability in Janto, versions prior to r12. This could allow an unauthenticated attacker to change another user's password without knowing their current password. To exploit the vulnerability, the attacker must create a specific POST request and send it to the endpoi...

CVE-2025-1107 Unverified password change vulnerability in Janto

Unverified password change vulnerability in Janto, versions prior to r12. This could allow an unauthenticated attacker to change another user's password without knowing their current password. To exploit the vulnerability, the attacker must create a specific POST request and send it to the endpoi...

CVE-2024-1107

Authorization Bypass Through User-Controlled Key vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Travel APPS: before v17.0.68...

CVE-2024-1107

Authorization Bypass Through User-Controlled Key vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Travel APPS: before v17.0.68...

CVE-2024-1107

CVE-2024-1107 affects Talya Informatics Travel APPS prior to v17.0.68. The root cause is an Authorization Bypass Through User-Controlled Key due to misconfigured access control levels, leading to a high-impact breach (CVE base score 9.8). Public sources (NVD/Red Hat/CNNVD/PT-Security/CVE lists) c...

CVE-2024-1107 IDOR in Talya Informatics' Travel APPS

Authorization Bypass Through User-Controlled Key vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Travel APPS: before v17.0.68...

CVE-2024-1107 IDOR in Talya Informatics' Travel APPS

Authorization Bypass Through User-Controlled Key vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Travel APPS: before v17.0.68...

Splunk Universal Forwarder 9.0.0 < 9.0.7, 9.1.0 < 9.1.2 (SVD-2023-1107)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2023-1107 advisory. - Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the...

Important: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. 'Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

RHEL 8 : sqlite (RHSA-2024:1107)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1107 advisory. SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk...

MAL-2024-276 Malicious code in wlwz-2312-1107 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 36735efc1a7ffa4b710d37b348dbecd9ded94fa99499db3fdfb5e838407061fa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-1107

creationtimestamp| type| source ---|---|--- 2023-03-02 07:33:59+00:00| seen| https://t.me/cibsecurity/59303 2025-03-07 22:36:02+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6909...

CVE-2023-1107 Cross-site Scripting (XSS) - Stored in flatpressblog/flatpress

Cross-site Scripting XSS - Stored in GitHub repository flatpressblog/flatpress prior to 1.3...

CVE-2023-1107 Cross-site Scripting (XSS) - Stored in flatpressblog/flatpress

Cross-site Scripting XSS - Stored in GitHub repository flatpressblog/flatpress prior to 1.3...

CVE-2023-1107

CVE-2023-1107 is a stored Cross-site Scripting (XSS) vulnerability affecting FlatPress before version 1.3, documented as occurring in stored user input in flatpressblog/flatpress. Multiple sources (NVD/Red Hat/CNNVD/OSV) consistently describe a stored XSS issue in FlatPress prior to 1.3. Some con...