14 matches found
CVE-2025-20134
creationtimestamp| type| source ---|---|--- 2025-08-14 19:17:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwf2khapkx2l 2025-08-15 11:00:11+00:00| seen| https://t.me/truesecator/7332 2025-08-19 20:53:18+00:00| seen| https://infosec.exchange/users/cR0w/statuses/11505741318334717...
CVE-2024-20134
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09154589; Issue ID: MSV-1866...
CVE-2022-20134
In readArguments of CallSubjectDialog.java, there is a possible way to trick the user to call the wrong phone number due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
CVE-2017-20134
A vulnerability, which was classified as critical, has been found in Itech Freelancer Script 5.13. Affected by this issue is some unknown functionality of the file /category.php. The manipulation of the argument sk leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2023-20134
creationtimestamp| type| source ---|---|--- 2023-04-05 22:41:12+00:00| seen| https://t.me/cibsecurity/61498...
CVE-2023-20134
Cisco Webex Meetings Web UI contains multiple vulnerabilities that enable an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack or upload arbitrary files as recordings via the web interface. The issue stems from vulnerabilities in the Web UI’s handling of input t...
CVE-2023-20134 Cisco Webex Meetings Web UI Vulnerabilities
Multiple vulnerabilities in the web interface of Cisco Webex Meetings could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack or upload arbitrary files as recordings. For more information about these vulnerabilities, see the Details section of this adviso...
CVE-2017-20134
A vulnerability, which was classified as critical, has been found in Itech Freelancer Script 5.13. Affected by this issue is some unknown functionality of the file /category.php. The manipulation of the argument sk leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2017-20134
The CVE-2017-20134 entry concerns Itech Freelancer Script version 5.13. The vulnerability is in an unknown function of /category.php where manipulating the sk parameter leads to SQL injection. It is described as remote in nature and has had public exploits disclosed. Connected documents corrobora...
CVE-2017-20134 Itech Freelancer Script category.php sql injection
A vulnerability, which was classified as critical, has been found in Itech Freelancer Script 5.13. Affected by this issue is some unknown functionality of the file /category.php. The manipulation of the argument sk leads to sql injection. The attack may be launched remotely. The exploit has been...
CVE-2022-20134
creationtimestamp| type| source ---|---|--- 2022-06-15 16:20:18+00:00| seen| https://t.me/cibsecurity/44491...
CVE-2022-20134
CVE-2022-20134 concerns a mitigation-resistant input validation flaw in Android’s UI flow. In readArguments of CallSubjectDialog.java, an improper validation allows an attacker to trick a user into dialing the wrong phone number, enabling local elevation of privilege with no additional execution ...
Luocms SQL Injection Vulnerability (CNVD-2022-20134)
Luocms is an article management system. A SQL injection vulnerability exists in Luocms v2.0, which stems from a lack of validation of external input SQL statements in /admin/login.php. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data...
CVE-2021-20134
The CVE-2021-20134 entry concerns Quagga services on the D-Link DIR-2640 (firmware version