25 matches found
CVE-2019-25698
creationtimestamp| type| source ---|---|--- 2026-04-05 23:29:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mirvqhcun42g 2026-04-07 21:20:13+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3miwpgk3yl22a...
CVE-2019-25698 Kados R10 GreenBee SQL Injection via id_to_delete Parameter
Kados R10 GreenBee contains an SQL injection vulnerability that allows attackers to manipulate database queries by injecting SQL code through the idtodelete parameter. Attackers can send crafted requests with malicious SQL statements in the idtodelete field to extract or modify sensitive database...
CVE-2026-25698
Not used...
CVE-2022-25698
creationtimestamp| type| source ---|---|--- 2026-01-20 08:04:55+00:00| seen| https://infosec.exchange/users/certvde/statuses/115926387351405846...
CVE-2024-25698
There is a reflected cross site scripting vulnerability in the home application in Esri Portal for ArcGIS 11.1 and below on Windows and Linux that allows a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the...
CVE-2024-25698 Reflected XSS in Portal for ArcGIS
There is a reflected cross site scripting vulnerability in the home application in Esri Portal for ArcGIS 11.1 and below on Windows and Linux that allows a remote, unauthenticated attacker to create a crafted link which when clicked could potentially execute arbitrary JavaScript code in the...
PT-2023-25698 · Sourcecodester · Lost/Found Information System
Name of the Vulnerable Software and Affected Versions: SourceCodester Lost and Found Information System version 1.0 Description: A critical issue affects the HTTP POST Request Handler component, specifically the file /classes/Master.php?f=save inquiry. The manipulation of the id argument leads to...
CVE-2023-25698
creationtimestamp| type| source ---|---|--- 2023-05-18 14:32:25+00:00| seen| https://t.me/cibsecurity/64394...
CVE-2023-25698
Cross-Site Request Forgery CSRF vulnerability in Studio Wombat Shoppable Images plugin = 1.2.3 versions...
CVE-2023-25698 WordPress Shoppable Images Lite Plugin <= 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Studio Wombat Shoppable Images plugin = 1.2.3 versions...
CVE-2023-25698
CVE-2023-25698: CSRF in WordPress Shoppable Images Lite plugin = 1.2.4.
CVE-2023-25698 WordPress Shoppable Images Lite Plugin <= 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Studio Wombat Shoppable Images plugin = 1.2.3 versions...
WordPress Shoppable Images Lite Plugin <= 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF)
Software Shoppable Images Lite Type Plugin Vulnerable versions = 1.2.3 Fixed in 1.2.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25698 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID d071aa365d52 Credits Rio Darmawan...
CVE-2022-25698
CVE-2022-25698 : Concrete issue in Qualcomm Snapdragon Mobile and Snapdragon Wearables, caused by memory corruption in SPI buses due to improper input validation when reading address configuration. Affected components are Qualcomm’s SPI bus handling in those platforms; root cause is input validat...
CVE-2022-25698
Memory corruption in SPI buses due to improper input validation while reading address configuration from spi buses in Snapdragon Mobile, Snapdragon Wearables...
CVE-2021-25698
The OpenSSL component of the Teradici PCoIP Standard Agent prior to version 21.07.0 was compiled without the no-autoload-config option, which allowed an attacker to elevate to the privileges of the running process via placing a specially crafted dll in a build configuration directory...
CVE-2021-25698
Summary: CVE-2021-25698 affects the OpenSSL component of the Teradici PCoIP Standard Agent prior to version 21.07.0. The issue arises because the component was compiled without the no-autoload-config option, enabling a local attacker to escalate privileges by placing a specially crafted DLL in a ...
Fedora: Security Advisory for moodle (FEDORA-2020-db73e37548)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for moodle (FEDORA-2020-304aa2c365)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Moodle < 3.5.14, 3.7.x < 3.7.9, 3.8.x < 3.8.6, 3.9.x < 3.9.3 Multiple Vulnerabilities
Moodle is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...