24 matches found
CVE-2026-10284 DevaslanPHP project-management Livewire ViewTicket.php doDeleteComment improper authorization
A flaw has been found in DevaslanPHP project-management up to 2.0.0-beta1. Affected by this vulnerability is the function editComment/doDeleteComment of the file app/Filament/Resources/TicketResource/Pages/ViewTicket.php of the component Livewire Handler. Executing a manipulation can lead to...
EUVD-2026-33752
A flaw has been found in DevaslanPHP project-management up to 2.0.0-beta1. Affected by this vulnerability is the function editComment/doDeleteComment of the file app/Filament/Resources/TicketResource/Pages/ViewTicket.php of the component Livewire Handler. Executing a manipulation can lead to...
Project Management 授权问题漏洞
Project Management is an open-source project management tool developed by DEVASLAN and released under the PHP open-source license. Versions of Project Management 2.0.0-beta1 and earlier had an authorization issue vulnerability. This vulnerability stems from an improper authorization in the...
EUVD-2022-7490
Malicious code in bioql PyPI...
EUVD-2022-7531
Malicious code in bioql PyPI...
CVE-2022-4867
Cross-Site Request Forgery CSRF in GitHub repository froxlor/froxlor prior to 2.0.0-beta1...
CVE-2022-4868
Improper Authorization in GitHub repository froxlor/froxlor prior to 2.0.0-beta1...
CVE-2022-4864
Argument Injection in GitHub repository froxlor/froxlor prior to 2.0.0-beta1...
GHSA-6GWX-GW56-QHF7 Froxlor vulnerable to Cross-Site Request Forgery
Cross-Site Request Forgery CSRF in GitHub repository froxlor/froxlor prior to 2.0.0-beta1...
CVE-2022-4867 Cross-Site Request Forgery (CSRF) in froxlor/froxlor
Cross-Site Request Forgery CSRF in GitHub repository froxlor/froxlor prior to 2.0.0-beta1...
PT-2022-28152 · Froxlor · Froxlor
Name of the Vulnerable Software and Affected Versions: froxlor versions prior to 2.0.0-beta1 Description: The issue is related to Cross-Site Request Forgery CSRF in the GitHub repository froxlor/froxlor. CSRF is an attack that tricks a user into performing unintended actions on a web application...
CVE-2022-4867 Cross-Site Request Forgery (CSRF) in froxlor/froxlor
Cross-Site Request Forgery CSRF in GitHub repository froxlor/froxlor prior to 2.0.0-beta1...
Design/Logic Flaw
Argument Injection in GitHub repository froxlor/froxlor prior to 2.0.0-beta1...
CVE-2022-4864 Argument Injection in froxlor/froxlor
Argument Injection in GitHub repository froxlor/froxlor prior to 2.0.0-beta1...
PT-2022-28149 · Froxlor · Froxlor
Name of the Vulnerable Software and Affected Versions: froxlor versions prior to 2.0.0-beta1 Description: The issue is related to Argument Injection in the GitHub repository froxlor/froxlor. Recommendations: For versions prior to 2.0.0-beta1, update to version 2.0.0-beta1 or later to resolve the...
FreeRDP Code Execution Vulnerability
FreeRDP is a is a FreeRDP team developed a Windows, OSX and Linux platform based on the free, open source implementation of the Remote Desktop Protocol RDP. A remote code execution vulnerability exists in FreeRDP version 2.0.0-beta1+android11 for Windows, OSX and Linux platforms. A remote attacke...
CVE-2017-2835
An exploitable code execution vulnerability exists in the RDP receive functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in the middle to...
Design/Logic Flaw
An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in the middle...
CVE-2017-2836
CVE-2017-2836 : FreeRDP contains an exploitable denial-of-service in the handling of proprietary server certificates. A specially crafted challenge packet can cause the program to terminate, resulting in a DoS condition. Affected component: FreeRDP 2.0.0-beta1+android11 (reading of server certifi...
CVE-2017-2839
CVE-2017-2839 affects FreeRDP 2.0.0-beta1+android11. A vulnerability in the handling of challenge packets can cause the program to terminate, leading to a denial of service. An attacker could exploit this over the network, potentially compromising the server or performing a man-in-the-middle atta...