109 matches found
CVE-2002-1614
creationtimestamp| type| source ---|---|--- 2026-02-27 07:25:02+00:00| seen| https://gist.github.com/ghh-jb/61f35d015c4e180bbddcf324be113e26...
CVE-2025-1614
A vulnerability classified as problematic has been found in FiberHome AN5506-01A ONU GPON RP2511. Affected is an unknown function of the file /goform/portForwardingCfg of the component Port Forwarding Submenu. The manipulation of the argument pfDescription leads to cross site scripting. It is...
EUVD-2018-1614
Malware in sbrugna...
CVE-2022-1614
The WP-EMail WordPress plugin before 2.69.0 prioritizes getting a visitor's IP from certain HTTP headers over PHP's REMOTEADDR, which makes it possible to bypass IP-based anti-spamming restrictions...
CVE-2013-1614
Multiple cross-site scripting XSS vulnerabilities in the management console aka Java console on the Symantec Security Information Manager SSIM appliance 4.7.x and 4.8.x before 4.8.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2025-1614
creationtimestamp| type| source ---|---|--- 2025-02-24 03:25:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5120 2025-02-24 06:15:11+00:00| seen| https://t.me/cvedetector/18778 2025-02-24 14:08:42+00:00| seen| Telegram/RdFPjTO1tuRG4bwpdKeaPhkQCqijmKigy4Kys635zC2dQVrd...
CVE-2025-1614
A vulnerability classified as problematic has been found in FiberHome AN5506-01A ONU GPON RP2511. Affected is an unknown function of the file /goform/portForwardingCfg of the component Port Forwarding Submenu. The manipulation of the argument pfDescription leads to cross site scripting. It is...
CVE-2025-1614 FiberHome AN5506-01A ONU GPON Port Forwarding Submenu portForwardingCfg cross site scripting
A vulnerability classified as problematic has been found in FiberHome AN5506-01A ONU GPON RP2511. Affected is an unknown function of the file /goform/portForwardingCfg of the component Port Forwarding Submenu. The manipulation of the argument pfDescription leads to cross site scripting. It is...
CVE-2025-1614
CVE-2025-1614 affects FiberHome AN5506-01A ONU GPON RP2511, specifically the Port Forwarding Submenu’s /goform/portForwardingCfg.x file and pf_Description parameter, where cross-site scripting is triggered. The vulnerability is reported as exploitable remotely; multiple sources note that the expl...
CVE-2025-1614 FiberHome AN5506-01A ONU GPON Port Forwarding Submenu portForwardingCfg cross site scripting
A vulnerability classified as problematic has been found in FiberHome AN5506-01A ONU GPON RP2511. Affected is an unknown function of the file /goform/portForwardingCfg of the component Port Forwarding Submenu. The manipulation of the argument pfDescription leads to cross site scripting. It is...
RHEL 8 : kernel-rt (RHSA-2024:1614)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1614 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...
Cisco NX-OS Software NX-API Command Injection (CVE-2019-1614)
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The vulnerability is due to incorrect input validation of user-supplied data by the NX-API subsystem. An attacker could exploit this...
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is a required product for IBM Tivoli Netcool Configuration Manager (CVE-2018-1614).
Summary IBM WebSphere Application Server is a required product for IBM Tivoli Netcool Configuration Manager version 6.4.2. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the...
CVE-2023-1614
The WP Custom Author URL WordPress plugin before 1.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-1614 WP Custom Author URL < 1.0.5 - Admin+ Stored XSS
The WP Custom Author URL WordPress plugin before 1.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-1614
CVE-2023-1614 affects the WordPress plugin WP Custom Author URL (pre-1.0.5). The vulnerability stems from insufficient sanitization/escaping of certain plugin settings, enabling Stored Cross-Site Scripting by high-privilege users (e.g., admins) even when unfiltered_html is disallowed. Public deta...
CVE-2023-1614 WP Custom Author URL < 1.0.5 - Admin+ Stored XSS
The WP Custom Author URL WordPress plugin before 1.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
WordPress WP Custom Author URL Plugin < 1.0.5 is vulnerable to Cross Site Scripting (XSS)
Software WP Custom Author URL Type Plugin Vulnerable versions 1.0.5 Fixed in 1.0.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1614 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 759b597f5797 Credits Shreya Pohekar Requir...
Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with IBM Tivoli System Automation Application Manager (CVE-2018-1614)
Summary WebSphere Application Server is shipped with IBM Tivoli System Automation Application Manager. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Digital Business Automation Workflow family products (CVE-2018-1614)
Summary WebSphere Application Server is shipped as a component of IBM Business Automation Workflow, IBM Business Process Manager, WebSphere Enterprise Service Bus and WebSphere Lombardi Edition. Information about a security vulnerability affecting IBM WebSphere Application Server Traditional have...