CVE-2023-36694

CVE-2023-36694 corresponds to a Missing Authorization/Broken Access Control vulnerability in WordPress Kingkong Board plugin (<= 2.1.0.2). Public sources confirm the issue stems from insufficient authorization checks, enabling unintended access to privileged actions. Evidence across sources sh...

WordPress plugin Kingkong Board security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability...

WordPress Kingkong Board Plugin <= 2.1.0.2 is vulnerable to Broken Access Control

Software Kingkong Board Type Plugin Vulnerable versions = 2.1.0.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-36694 Patch priority Medium CVSS severity Medium 6.3 Developer Claim ownership PSID 592012ceca48 Credits Abdi Pranata Required...

Security Bulletin: Vulnerability in IBM Java Runtime affects IBM WebSphere MQ Internet Pass-Thru (CVE-2015-7575)

Summary There is a vulnerability in IBM® Runtime Environment Java™ Technology Edition, Version 7 that is used by IBM MQ Internet Pass-Thru. This vulnerability, commonly referred to as “SLOTH”, was disclosed as part of the IBM Java SDK updates in January 2016. Patches for these are available in IB...

CVE-2008-5786

CVE-2008-5786 describes a cross-site scripting (XSS) vulnerability in the Silva Find extension. The issue affects Silva Find extension 1.1.5 and earlier within Silva 1.x up to 1.6.3.2, Silva 2.0 up to 2.0.12.2, and Silva 2.1 up to 2.1.0.2, where an attacker could inject arbitrary web script or HT...

Stack overflow

Stack-based buffer overflow in the PTZCamPanelCtrl ActiveX control CamPanel.dll in RTS Sentry 2.1.0.2 allows remote attackers to execute arbitrary code via a long second argument to the ConnectServer method...

CVE-2008-4548

CVE-2008-4548 affects RTS Sentry 2.1.0.2 via the PTZCamPanelCtrl ActiveX (CamPanel.dll). The root cause is a stack-based buffer overflow triggered by a long second argument to ConnectServer, enabling remote code execution. Public references (NVD, CVE lists, exploit-db) confirm the vulnerability a...

RTS Sentry Digital Surveillance - CamPanel.dll 2.1.0.2 Remote Buffer Overflow

RTS Sentry Digital Surveillance - CamPanel.dll 2.1.0.2 Remote Buffer Overflow //add su one, user: sun pass: tzu shellcode = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" + "%u5058%u4230%u4231%u6b41%u4141%u3255%u4241%u3241" +...