120 matches found
DataEase 2.10.4-2.10.7 - Remote Code Execution
DataEase prior to version 2.10.8 contains a remote code execution caused by insecure backend JDBC link handling, letting authenticated users execute arbitrary code, exploit requires user authentication. id: CVE-2025-32966 info: name: DataEase 2.10.4-2.10.7 - Remote Code Execution author: ChrisJr4...
CVE-2026-45080
Klaw (the self-service Apache Kafka Topic Management/Governance portal) is affected prior to version 2.10.4 by improper access control that can disclose password hashes. The issue is resolved in version 2.10.4. Affected software/components: Klaw; root cause: improper access control leading to pas...
CVE-2026-45080 Klaw: Improper Access Control Allows Disclosure of Password Hash
Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, improper access control allows disclosure of password hash. This issue has been patched in version 2.10.4...
EUVD-2026-33961
Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, a vulnerability exists in the user registration and login mechanisms due to inconsistent handling of username case sensitivity, leading to a targeted Denial of Service DoS and complete account...
CVE-2026-44367
Klaw (self-service Apache Kafka Topic Management/Governance tool) is affected prior to v2.10.4 by inconsistent case-sensitivity handling in user registration and login, enabling targeted DoS and complete account lockout. Root cause: username case handling leads to lockout conditions. Impact: Deni...
PT-2026-45782
Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, improper access control allows disclosure of password hash. This issue has been patched in version 2.10.4...
PT-2026-45781
Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, a vulnerability exists in the user registration and login mechanisms due to inconsistent handling of username case sensitivity, leading to a targeted Denial of Service DoS and complete account...
OPENSUSE-SU-2026:10578-1 tempo-cli-2.10.4-1.1 on GA media
These are all security issues fixed in the tempo-cli-2.10.4-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2025-7425 affecting package libxml2 for versions less than 2.10.4-10
CVE-2025-7425 affecting package libxml2 for versions less than 2.10.4-10. A patched version of the package is available...
CVE-2026-0990 affecting package libxml2 for versions less than 2.10.4-10
CVE-2026-0990 affecting package libxml2 for versions less than 2.10.4-10. A patched version of the package is available...
CVE-2022-0940
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to v2.10.4...
CVE-2022-0937
Stored xss in showdoc through file upload in GitHub repository star7th/showdoc prior to 2.10.4...
CVE-2022-0967
Stored XSS via File Upload in star7th/showdoc in star7th/showdoc in GitHub repository star7th/showdoc prior to 2.10.4...
CVE-2022-0942
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to 2.10.4...
CVE-2022-0951
File Upload Restriction Bypass leading to Stored XSS Vulnerability in GitHub repository star7th/showdoc prior to 2.10.4...
CVE-2022-0946
Stored XSS viva cshtm file upload in GitHub repository star7th/showdoc prior to v2.10.4...
CVE-2022-0938
Stored XSS via file upload in GitHub repository star7th/showdoc prior to v2.10.4...
CVE-2025-49795 affecting package libxml2 for versions less than 2.10.4-9
CVE-2025-49795 affecting package libxml2 for versions less than 2.10.4-9. A patched version of the package is available...
EUVD-2016-10079
Malware in sbrugna...
EUVD-2018-12730
Malware in sbrugna...