CVE-2020-1878

Huawei smartphone OxfordS-AN00A with versions earlier than 10.0.1.152DC735E152R3P3,versions earlier than 10.0.1.160C00E160R4P1 have an improper authentication vulnerability. Authentication to target component is improper when device performs an operation. Attackers exploit this vulnerability to...

CVE-2025-1878

creationtimestamp| type| source ---|---|--- 2025-03-03 20:49:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljit7azahr23 2025-03-03 21:24:39+00:00| seen| https://t.me/cvedetector/19399 2025-03-03 21:46:05+00:00| seen| https://infosec.exchange/users/cR0w/statuses/1141006902539272...

CVE-2025-1878 i-Drive i11/i12 WiFi default password

A vulnerability has been found in i-Drive i11 and i12 up to 20250227 and classified as problematic. This vulnerability affects unknown code of the component WiFi. The manipulation leads to use of default password. Access to the local network is required for this attack to succeed. The complexity ...

CVE-2025-1878

CVE-2025-1878 affects i-Drive i11/i12 (up to 20250227). The vulnerability concerns the WiFi component and enables use of a default password, requiring local-network access with high attack complexity. The product’s maintainer is not identified and the product appears end-of-life. No remediation d...

CVE-2024-1878

creationtimestamp| type| source ---|---|--- 2024-02-26 17:42:32+00:00| seen| https://t.me/ctinow/193553 2024-02-29 10:26:14+00:00| seen| https://t.me/ctinow/196471...

CVE-2024-1878

CVE-2024-1878 affects SourceCodester Employee Management System 1.0. The vulnerability is an SQL injection in the file /myprofile.php triggered by manipulating the id parameter (example payload: 1%20or%201=1). This allows remote exploitation and has been publicly disclosed. Multiple connected sou...

CVE-2024-1878 SourceCodester Employee Management System myprofile.php sql injection

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /myprofile.php. The manipulation of the argument id with the input 1%20or%201=1 leads to sql injection. The attack may be...

Amazon Linux AMI : mysql57 (ALAS-2023-1878)

The version of mysql57 installed on the remote host is prior to 5.7.43-1.20. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1878 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Client programs. Supported versions that are affected are...

Oracle Linux 8 : samba (ELSA-2020-1878)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1878 advisory. - resolves: 1791209 - Fix CVE-2019-14907 - resolves: 1764469 - Fix CVE-2019-10218 - resolves: 1746241 - Fix CVE-2019-10197 Tenable has extracted the...

CVE-2023-1878

creationtimestamp| type| source ---|---|--- 2023-04-05 20:26:23+00:00| seen| https://t.me/cibsecurity/61473...

CVE-2023-1878 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1878 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1878 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1878

The CVE-2023-1878 issue concerns thorsten/phpmyfaq versions prior to 3.1.12, where a stored XSS vulnerability exists in the adminlog due to unsanitized input. Exploitation could allow an attacker to execute script in a victim’s browser when adminlog data is viewed. The vulnerability is fixed in v...

phpMyFAQ < 3.1.12 Multiple Vulnerabilities

phpMyFAQ is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyfaq:phpmyfaq"; if description...

Debian: Security Advisory (DLA-60-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2008-1878

Stack-based buffer overflow in the demuxnsfsendchunk function in src/demuxers/demuxnsf.c in xine-lib 1.1.12 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long NSF title...

Amazon Linux 2 : util-linux (ALAS-2022-1878)

The version of util-linux installed on the remote host is prior to 2.30.2-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2022-1878 advisory. A command injection flaw was found in the way util-linux implements umount autocompletion in Bash. An attacker with the ability...

Mageia: Security Advisory (MGASA-2014-0186)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-1878

An integer overflow was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. An attacker in a privileged network position may be able to leak sensitive user information...