164 matches found
CVE-2026-1202
A security flaw has been discovered in CRMEB up to 5.6.3. The affected element is the function appleLogin of the file crmeb/app/api/controller/v1/LoginController.php. Performing a manipulation of the argument openId results in improper authentication. The attack is possible to be carried out...
CVE-2026-1202
A security flaw has been discovered in CRMEB up to 5.6.3. The affected element is the function appleLogin of the file crmeb/app/api/controller/v1/LoginController.php. Performing a manipulation of the argument openId results in improper authentication. The attack is possible to be carried out...
CVE-2026-1202 CRMEB LoginController.php appleLogin improper authentication
A security flaw has been discovered in CRMEB up to 5.6.3. The affected element is the function appleLogin of the file crmeb/app/api/controller/v1/LoginController.php. Performing a manipulation of the argument openId results in improper authentication. The attack is possible to be carried out...
CVE-2026-1202
A security flaw has been discovered in CRMEB up to 5.6.3. The affected element is the function appleLogin of the file crmeb/app/api/controller/v1/LoginController.php. Performing a manipulation of the argument openId results in improper authentication. The attack is possible to be carried out...
Linux Distros Unpatched Vulnerability : CVE-2011-1202
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote...
CVE-2023-1202
creationtimestamp| type| source ---|---|--- 2025-02-20 21:17:50+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/4817...
CVE-2025-1202
creationtimestamp| type| source ---|---|--- 2025-02-12 15:16:36+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhyhqpywms2a 2025-02-12 18:33:37+00:00| seen| https://t.me/cvedetector/17898...
CVE-2025-1202
The CVE-2025-1202 entry affects SourceCodester Best Church Management Software 1.1. Affects an unknown function in /admin/edit_slider.php where manipulating the id parameter yields a SQL injection, allowing remote exploitation. Multiple connected sources (NVD, Red Hat, CVE lists) corroborate the ...
Splunk Enterprise 9.1.0 < 9.1.7, 9.2.0 < 9.2.4, 9.3.0 < 9.3.2 (SVD-2024-1202)
The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2024-1202 advisory. - In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and Splunk Cloud Platform versions below 9.2.2406.107,...
RHEL 7 : qemu-kvm-rhev (RHSA-2019:1202)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1202 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provi...
Elber Wayber Analog/Digital Audio STL 4.00 Insecure Direct Object Reference Vulnerability
Elber Wayber Analog/Digital Audio STL version 4.00 suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability. Elber Wayber Analog/Digital Audio STL 4.00 Device Config Vendor: Elber S.r.l. Product web page: https://www.elber.it Affected...
CVE-2024-1202 Authentication Bypass in XPodas' Octopod
Authentication Bypass by Primary Weakness vulnerability in XPodas Octopod allows Authentication Bypass. This issue affects Octopod: before v1. NOTE: The vendor was contacted and it was learned that the product is not supported...
CVE-2024-1202
CVE-2024-1202 affects XPodas Octopod prior to v1. The vulnerability is described as Authentication Bypass by Primary Weakness, enabling unauthorized access. Affected software: XPodas Octopod (before v1); root cause details are not provided in the documents beyond the bypass claim. Remediation sta...
MAL-2024-280 Malicious code in wlwz-2312-1202 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 302a80db5133c61d7579795b9aadfc3bd937b2e6d12e868a845d9587b6c17787 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wlwz-2312-1202 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 302a80db5133c61d7579795b9aadfc3bd937b2e6d12e868a845d9587b6c17787 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2023-36833
A Use After Free vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS Evolved on PTX10001-36MR, and PTX10004, PTX10008, PTX10016 with LC1201/1202 allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS. The process 'aftman-bt' will crash after...
Design/Logic Flaw
A Use After Free vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS Evolved on PTX10001-36MR, and PTX10004, PTX10008, PTX10016 with LC1201/1202 allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS. The process 'aftman-bt' will crash after...
CVE-2023-36833 Junos OS Evolved: PTX10001-36MR, and PTX10004, PTX10008, PTX10016 with LC1201/1202: The aftman-bt process will crash in a MoFRR scenario after multiple link flaps
A Use After Free vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS Evolved on PTX10001-36MR, and PTX10004, PTX10008, PTX10016 with LC1201/1202 allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS. The process 'aftman-bt' will crash after...
CVE-2023-36833 Junos OS Evolved: PTX10001-36MR, and PTX10004, PTX10008, PTX10016 with LC1201/1202: The aftman-bt process will crash in a MoFRR scenario after multiple link flaps
A Use After Free vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS Evolved on PTX10001-36MR, and PTX10004, PTX10008, PTX10016 with LC1201/1202 allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS. The process 'aftman-bt' will crash after...
CVE-2023-1202
Permission bypass when importing or synchronizing entries in User vault in Devolutions Remote Desktop Manager 2023.1.9 and prior versions allows users with restricted rights to bypass entry permission via id collision...