146 matches found
Amazon Linux 2023 : ImageMagick, ImageMagick-c++, ImageMagick-c++-devel (ALAS2023-2026-1704)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1704 advisory. Stack buffer overflow in XTileImage CVE-2026-42050 Tenable has extracted the preceding description block directly from the tested product security advisory. Note that Nessus has not tested for this iss...
EUVD-2026-1704
A vulnerability was found in BiggiDroid Simple PHP CMS 1.0. This impacts an unknown function of the file /admin/editsite.php. The manipulation of the argument image results in unrestricted upload. The attack can be launched remotely. The exploit has been made public and could be used. The vendor...
CVE-2025-1704
ComponentInstaller Modification in ComponentInstaller in Google ChromeOS 15823.23.0 on Chromebooks allows enrolled users with local access to unenroll devices and intercept device management requests via loading components from the unencrypted stateful partition...
EUVD-2005-3170
Malware in sbrugna...
EUVD-2018-1704
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2014-1704
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple unspecified vulnerabilities in Google V8 before 3.23.17.18, as used in Google Chrome before 33.0.1750.149, allow attackers to cause a denial of service...
CVE-2023-0659
A vulnerability was found in BDCOM 1704-WGL 2.0.6314. It has been classified as critical. This affects an unknown part of the file /param.file.tgz of the component Backup File Handler. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The identifier...
CVE-2025-1704
creationtimestamp| type| source ---|---|--- 2025-04-16 23:58:39+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12172 2025-04-17 02:06:35+00:00| seen| https://t.me/cvedetector/23198 2025-04-17 02:48:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmy3rydzlv2l 2025-04-17...
CVE-2025-1704
ComponentInstaller Modification in ComponentInstaller in Google ChromeOS 15823.23.0 on Chromebooks allows enrolled users with local access to unenroll devices and intercept device management requests via loading components from the unencrypted stateful partition...
CVE-2025-1704
ComponentInstaller Modification in ComponentInstaller in Google ChromeOS 15823.23.0 on Chromebooks allows enrolled users with local access to unenroll devices and intercept device management requests via loading components from the unencrypted stateful partition...
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2024-1704)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-1704
creationtimestamp| type| source ---|---|--- 2024-02-21 19:21:51+00:00| seen| https://t.me/ctinow/189964 2024-02-21 19:26:24+00:00| seen| https://t.me/ctinow/189977 2024-02-22 19:54:35+00:00| seen| https://t.me/arpsyndicate/4024 2024-03-13 08:36:37+00:00| seen| https://t.me/ctinow/206461...
CVE-2024-1704
CVE-2024-1704 affects ZhongBangKeJi CRMEB 5.2.2. A vulnerability in the function save/delete of the file "/adminapi/system/crud" allows path traversal. The exploit status is not elaborated in detail in the provided documents, but multiple sources reference a critical issue with this endpoint and ...
Malicious code in wlwz-2312-1704 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2fe0cae4b95307e4dc15eaac3c7d6f896e90f40999f1c072920662ccc042001b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-327 Malicious code in wlwz-2312-1704 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2fe0cae4b95307e4dc15eaac3c7d6f896e90f40999f1c072920662ccc042001b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
SUSE: Security Advisory (SUSE-SU-2023:1704-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-1704 Cross-site Scripting (XSS) - Stored in pimcore/pimcore
Cross-site Scripting XSS - Stored in GitHub repository pimcore/pimcore prior to 10.5.20...
CVE-2023-1704
CVE-2023-1704 affects pimcore/pimcore prior to 10.5.20, with Cross-Site Scripting (XSS) via the translation/translationEditor path (translate module) due to insufficient input sanitization. Red Hat and Veracode confirm XSS across multiple sources; Pimcore patches are available: upgrade to 10.5.20...
Amazon Linux AMI : tar (ALAS-2023-1704)
The version of tar installed on the remote host is prior to 1.26-31.23. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1704 advisory. GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory for a conditional jump. Exploitati...
SUSE CVE-2014-1704
Multiple unspecified vulnerabilities in Google V8 before 3.23.17.18, as used in Google Chrome before 33.0.1750.149, allow attackers to cause a denial of service or possibly have other impact via unknown vectors...