10 matches found
CVE-2025-14014
creationtimestamp| type| source ---|---|--- 2026-02-12 15:51:08+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3meoduiqdr323 2026-02-12 15:52:03+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3meodw5kv6v2v...
CVE-2020-14014
An issue was discovered in Navigate CMS 2.8 and 2.9 r1433. The query parameter fid on the resource navigate.php does not perform sufficient data validation and/or encoding, making it vulnerable to reflected XSS...
CVE-2021-34834
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.0.0.49893. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2021-34834
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.0.0.49893. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2021-34834
CVE-2021-34834 affects Foxit PDF Reader (11.0.0.49893) and related Foxit products. The root cause is lack of validation for the existence of an Annotation object before performing operations, enabling remote code execution when a user opens a malicious file/page and the attacker can execute code ...
CVE-2020-14014
Navigate CMS versions 2.8 and 2.9 r1433 are vulnerable to reflected XSS via the fid query parameter in navigate.php due to insufficient validation/encoding. Documented across multiple feeds (NVD, Red Hat, CNVD, CNVD/PRION variants), confirming the root cause as unsanitized client input leading to...
CVE-2018-17255
CVE-2018-17255 is rejected; reference CVE-2020-14014 instead.
CVE-2018-14014
In waimai Super Cms 20150505, there is a CSRF vulnerability that can add an admin account via admin.php?m=Member&a=adminadd...
CVE-2018-14014
CVE-2018-14014 affects waimai Super Cms 20150505 and involves a Cross-Site Request Forgery (CSRF) vulnerability in admin.php?m=Member&a=adminadd that can be exploited to add an administrator account. The Red Hat, CNVD, CVE registries and others corroborate a CSRF issue in this CMS, with consisten...
CVE-2017-14014
Summary of CVE-2017-14014 : The Boston Scientific ZOOM LATITUDE PRM Model 3120 uses a hard-coded cryptographic key to encrypt PHI before it is transferred to removable media. This creates a vulnerability (CWE-321: Use of Hard-coded Cryptographic Key) with CVSS3 base score 4.6 (vector AV:P/AC:L/PR...