14 matches found
CVE-2026-23782
An issue was discovered in BMC Control-M/MFT 9.0.20 through 9.0.22. An API management endpoint allows unauthenticated users to obtain both an API identifier and its corresponding secret value. With these exposed secrets, an attacker could invoke privileged API operations, potentially leading to...
EUVD-2021-23782
Malware in sbrugna...
CVE-2025-23782
CVE-2025-23782 affects WordPress TotalContest Lite (TotalContest Lite plugin) with versions up to 2.8.1. The issue is a Reflected Cross-Site Scripting (XSS) vulnerability caused by improper neutralization of user input during web page generation. Impact is described as via Reflected XSS, with CVS...
CVE-2025-23782 WordPress TotalContest Lite Plugin <= 2.8.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in TotalSuite TotalContest Lite totalcontest-lite allows Reflected XSS.This issue affects TotalContest Lite: from n/a through = 2.8.1...
CVE-2025-23782 WordPress TotalContest Lite Plugin <= 2.8.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in TotalSuite TotalContest Lite totalcontest-lite allows Reflected XSS.This issue affects TotalContest Lite: from n/a through = 2.8.1...
Oracle Linux 8 : ansible-core (ELSA-2024-3043)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-3043 advisory. - Fix CVE-2024-0690 possible information leak in tasks that ignore ANSIBLENOLOG configuration RHEL-22123 Tenable has extracted the preceding description block...
Fortinet FortiWeb Heap based overflow in CLI (FG-IR-22-111)
The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-111 advisory. - A heap-based buffer overflow in Fortinet FortiWeb version 7.0.0 through 7.0.1, FortiWeb version 6.3.0 through 6.3.19, FortiW...
CVE-2024-23782
creationtimestamp| type| source ---|---|--- 2024-01-29 00:26:33+00:00| seen| https://t.me/ctinow/175032 2024-02-21 09:36:26+00:00| seen| https://t.me/ctinow/189398...
CVE-2024-23782
CVE-2024-23782 is a cross-site scripting vulnerability in a-blog cms affecting: 3.1.x before 3.1.7; 3.0.x before 3.0.29; 2.11.x before 2.11.58; 2.10.x before 2.10.50; and 2.9.0 and earlier. An attacker with contributor or higher privileges can cause arbitrary script execution in a user’s browser....
CVE-2023-23782
creationtimestamp| type| source ---|---|--- 2023-02-16 22:17:34+00:00| seen| https://t.me/cibsecurity/58346...
CVE-2023-23782
A heap-based buffer overflow in Fortinet FortiWeb version 7.0.0 through 7.0.1, FortiWeb version 6.3.0 through 6.3.19, FortiWeb 6.4 all versions, FortiWeb 6.2 all versions, FortiWeb 6.1 all versions allows attacker to escalation of privilege via specifically crafted arguments to existing commands...
CVE-2023-23782
A heap-based buffer overflow in Fortinet FortiWeb version 7.0.0 through 7.0.1, FortiWeb version 6.3.0 through 6.3.19, FortiWeb 6.4 all versions, FortiWeb 6.2 all versions, FortiWeb 6.1 all versions allows attacker to escalation of privilege via specifically crafted arguments to existing commands...
CVE-2023-23782
Fortinet FortiWeb is affected by a heap-based buffer overflow in the CLI that can be exploited by an authenticated attacker to escalate privileges and potentially execute arbitrary code. The CVE-2023-23782 description covers FortiWeb versions 7.0.0–7.0.1, 6.3.0–6.3.19, and all 6.4, 6.2, and 6.1 v...
Potential RCE if filename starts with phar://
More info at https://pear.php.net/bugs/bug.php?id=23782...