WordPress Eventbee Ticketing Widget plugin <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Eventbee Ticketing Widget versions = 1.0...

CVE-2024-11856

creationtimestamp| type| source ---|---|--- 2024-12-02 03:01:01+00:00| seen| https://infosec.exchange/users/cve/statuses/113580996130798917 2024-12-02 05:22:11+00:00| seen| https://t.me/cvedetector/11734...

CVE-2024-11856 HPE IceWall Products, Remote Unauthorized Data Modification

A security vulnerability in HPE IceWall products could be exploited remotely to cause Unauthorized Data Modification...

Design/Logic Flaw

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-2020 v1.01rc001 Wi-Fi access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CGI scripts. When...

CVE-2021-27250

Summary (CVE-2021-27250) : Affected product is D-Link DAP-2020 Wi‑Fi access points (v1.01rc001). The flaw is in CGI script handling, specifically when parsing the errorpage parameter; the process does not validate a user-supplied path before using it in file operations, enabling a network-adjacen...

CVE-2020-11856

Arbitrary code execution vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. The vulnerability could allow remote attackers to execute arbitrary code on affected installations of OBR...

CVE-2020-11856

The CVE covers Micro Focus Operations Bridge Reporter (OBR) vulnerable through its JMX remote interface. Connected sources confirm: affected product is OBR, version 10.40 and earlier, with a root cause described as misconfigured or unauthenticated JMX access that allows remote code execution. The...

CVE-2019-11856

The CVE-2019-11856 entry covers a nonce-reuse vulnerability in the ACEView service of ALEOS prior to versions 4.13.0, 4.9.5, and 4.4.9. The issue allows replay of captured ACEView traffic to other gateways sharing the same credentials, enabling message replay. Affected component: ACEView service ...

CVE-2018-11856

CVE-2018-11856 is a Qualcomm Snapdragon vulnerability describing improper input validation that leads to a buffer overwrite in the WLAN/WMI handling function on Snapdragon Mobile platforms (SD 835, 845, 850). The issue is triggered within the WLAN component during processing of WMI commands. The ...

CVE-2017-11856

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current...

CVE-2017-11856

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current...

Memory corruption

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the curren...

CVE-2017-11856

Technical details about CVE-2017-11856 are not provided in the connected documents; the initial description is the only public detail available here. Monitor for vendor advisories and security updates.

Microsoft Internet Explorer CVE-2017-11856 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Internet Explorer 11 is vulnerable...

Microsoft Internet Explorer Memory Corruption (CVE-2017-11856)

A remote code execution vulnerability exists in Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page...

Unfixed XSS vulnerability at sg.88db.com

Security researcher Uber0n, has submitted on 17/12/2007 a cross-site-scripting XSS vulnerability affecting sg.88db.com, which at the time of submission ranked 11856 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 23/12/2007. It is currently...