CVE-2026-2079

A flaw has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This vulnerability affects the function addMenu/updateMenu/deleteMenu of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\MenuController.java of the component Menu Management. Executi...

CVE-2026-2079 yeqifu warehouse Menu Management MenuController.java deleteMenu improper authorization

A flaw has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This vulnerability affects the function addMenu/updateMenu/deleteMenu of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\MenuController.java of the component Menu Management. Executi...

CVE-2026-2079 yeqifu warehouse Menu Management MenuController.java deleteMenu improper authorization

A flaw has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This vulnerability affects the function addMenu/updateMenu/deleteMenu of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\MenuController.java of the component Menu Management. Executi...

CVE-2019-2079

In libxaac, there is a possible out of bounds read due to a missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-115509210...

EUVD-2013-2079

Malware in sbrugna...

CVE-2021-2079

Vulnerability in the Oracle Configurator product of Oracle Supply Chain component: UI Servlet. Supported versions that are affected are 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Configurator. Successful attack...

CVE-2009-2079

Cross-site scripting XSS vulnerability in the administrative page interface in Taxonomy manager 5.x before 5.x-1.2 and 6.x before 6.x-1.1, a module for Drupal, allows remote authenticated users, with administer taxonomy privileges or the ability to use free tagging to add taxonomy terms, to injec...

CVE-2002-2079

mosix-protocol-stack in Multicomputer Operating System for UnIX MOSIX 1.5.7 allows remote attackers to cause a denial of service via malformed packets...

CVE-2015-2079

Usermin 0.980 through 1.x before 1.660 allows uconfigsave.cgi sigfilefree remote code execution because it uses the two argument not three argument form of Perl open...

CVE-2015-2079

Usermin 0.980 through 1.x before 1.660 allows uconfigsave.cgi sigfilefree remote code execution because it uses the two argument not three argument form of Perl open...

CVE-2015-2079

creationtimestamp| type| source ---|---|--- 2025-04-28 15:10:49+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13686 2025-04-28 15:48:51+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114416374759123338 2025-04-28 17:45:20+00:00| seen|...

CVE-2015-2079

Usermin 0.980 through 1.x before 1.660 allows uconfigsave.cgi sigfilefree remote code execution because it uses the two argument not three argument form of Perl open...

CVE-2015-2079

CVE-2015-2079 affects Webmin Usermin 0.980–1.x before 1.660. Root cause: the uconfig_save.cgi module uses the two-argument form of Perl open, enabling remote code execution (sig_file_free). Impact: remote code execution with high/critical potential. Affected software is Usermin; remediation is to...

CVE-2025-2079

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1.2rc11 contain a hard coded secret key. This could allow an attacker to generate valid JWT JSON Web Token sessions...

CVE-2025-2079

CVE-2025-2079 affects Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool (v3.1.2rc11). Reported issue is a hard-coded secret key that could allow an attacker to generate valid JWT sessions, potentially bypassing authentication and gaining control over the tools. Pu...

CVE-2025-2079

creationtimestamp| type| source ---|---|--- 2025-03-11 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-070-02 2025-03-13 19:48:06+00:00| seen| https://t.me/cvedetector/20232...

CVE-2022-2079

Cross-site Scripting XSS - Stored in GitHub repository nocodb/nocodb prior to 0.91.7+...

RHEL 9 : git-lfs (RHSA-2024:2079)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:2079 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing th...

CVE-2024-2079

creationtimestamp| type| source ---|---|--- 2024-03-13 23:26:34+00:00| seen| https://t.me/ctinow/207295 2024-03-13 23:31:20+00:00| seen| https://t.me/ctinow/207303...

CVE-2024-2079

The WPBakery Page Builder Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'perlinemobile' shortcode in all versions up to, and including, 3.8.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes ...