26 matches found
CVE-2026-14635
creationtimestamp| type| source ---|---|--- 2026-07-04 20:11:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mptun7l5z32o...
CVE-2026-14635 kirilkirkov Ecommerce-CodeIgniter-Bootstrap Vendor Multi-Image Endpoint AddProduct.php path traversal
A security flaw has been discovered in kirilkirkov Ecommerce-CodeIgniter-Bootstrap up to 222ff31c06687b1c6d0e1ab63953f82c3674c52b. This issue affects some unknown processing of the file application/modules/vendor/controllers/AddProduct.php of the component Vendor Multi-Image Endpoint. Performing ...
CVE-2025-14635
creationtimestamp| type| source ---|---|--- 2025-12-23 13:08:55+00:00| seen| https://gist.github.com/Darkcrai86/71c204b3b0ba778f7ea8936118f302ad 2025-12-23 13:34:00+00:00| seen| https://gist.github.com/Darkcrai86/4bc120072132e5d041512b321f39204b...
WordPress Happy Addons for Elementor plugin <= 3.20.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom JS vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Custom JS vulnerability discovered by zer0gh0st in WordPress Plugin Happy Addons for Elementor versions = 3.20.3...
Linux Distros Unpatched Vulnerability : CVE-2017-14635
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Open Ticket Request System OTRS 3.3.x before 3.3.18, 4.x before 4.0.25, and 5.x before 5.0.23, remote authenticated users can leverage statistics-write...
RHEL 7 : openstack-neutron (RHSA-2018:2715)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2715 advisory. OpenStack Networking neutron is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main functi...
RHEL 7 : openstack-neutron (RHSA-2018:3792)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:3792 advisory. OpenStack Networking neutron is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main functi...
CVE-2018-14635
creationtimestamp| type| source ---|---|--- 2024-04-12 11:04:21+00:00| seen| https://t.me/arpsyndicate/4598...
SUSE CVE-2017-14635
In Open Ticket Request System OTRS 3.3.x before 3.3.18, 4.x before 4.0.25, and 5.x before 5.0.23, remote authenticated users can leverage statistics-write permissions to gain privileges via code injection...
CVE-2020-14635
CVE-2020-14635 affects Oracle E-Business Suite Application Object Library (AOL), Logging component. Affects 12.2.5–12.2.9; an unauthenticated, network-accessible attacker over HTTP can read a subset of AOL data due to the underlying issue described in the CVE. Multiple sources (NVD, RH Red Hat, C...
Moderate: Red Hat Security Advisory: openstack-neutron security update
An update for openstack-neutron is now available for Red Hat OpenStack Platform 13.0 Queens. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
DEBIAN-CVE-2018-14635
When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from...
CVE-2018-14635
The CVE-2018-14635 vulnerability affects OpenStack Neutron’s ml2 Linux Bridge driver. The issue allows non-privileged tenants to create and attach ports without assigning an IP address, bypassing IP address validation. This can lead to a potential denial of service if an IP outside the allowed al...
CVE-2018-14635
When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from...
Debian: Security Advisory (DLA-1119-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OTRS Unspecified Remote Code Execution (OSA-2017-04)
The version of OTRS running on the remote host is 3.3.x prior to 3.3.18, 4.0.x prior to 4.0.25, 5.0.x prior to 5.0.23 or 6.0.x prior to 6.0.beta2. It is, therefore, affected by a remote code execution vulnerability. C Tenable Network Security, Inc. include"compat.inc"; if description...
[SECURITY] [DSA 4021-1] otrs2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4021-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 07, 2017 https://www.debian.org/security/faq -...
openSUSE Security Update : otrs (openSUSE-2017-1117)
This update for otrs to version 3.3.18 fixes the following issue : This security issue was fixed : - CVE-2017-14635: Remote authenticated users could have leveraged statistics-write permissions to gain privileges via code injection bsc1059691. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
[SECURITY] [DLA 1119-1] otrs2 security update
Package : otrs2 Version : 3.3.18-1deb7u1 CVE ID : CVE-2014-1695 CVE-2014-2553 CVE-2014-2554 CVE-2017-14635 Debian Bug : 876462 An attacker who is logged into OTRS, a Ticket Request System, as an agent with write permissions for statistics can inject arbitrary code into the system. This can lead t...
OTRS < 3.3.18, 4.x < 4.0.25, 5.x < 5.0.23 Privilege Escalation Vulnerability
OTRS is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:otrs:otrs"; if description...