19 matches found
CVE-2026-26045
creationtimestamp| type| source ---|---|--- 2026-02-17 13:10:06+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mf2n76nw5322 2026-02-27 02:00:15+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfsmglp7722q...
CVE-2023-26045
NodeBB is Node.js based forum software. Starting in version 2.5.0 and prior to version 2.8.7, due to the use of the object destructuring assignment syntax in the user export code path, combined with a path traversal vulnerability, a specially crafted payload could invoke the user export logic to...
CVE-2022-26045
Improper buffer restrictions in some IntelR XMMTM 7560 Modem software before version M27560R01.2146.00 may allow a privileged user to potentially enable escalation of privilege via physical access...
CVE-2024-26045
Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...
CVE-2024-26045
CVE-2024-26045 affects Adobe Experience Manager (AEM) 6.5.19 and earlier. The issue is a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing an attacker to inject malicious JavaScript that may run in a victim’s browser when the page with the vulnerable field is loa...
CVE-2024-26045 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...
CVE-2024-26045 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...
CVE-2023-26045
creationtimestamp| type| source ---|---|--- 2023-07-25 02:38:44+00:00| seen| https://t.me/cibsecurity/67191 2023-07-27 13:26:17+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8742...
CVE-2023-26045
NodeBB is Node.js based forum software. Starting in version 2.5.0 and prior to version 2.8.7, due to the use of the object destructuring assignment syntax in the user export code path, combined with a path traversal vulnerability, a specially crafted payload could invoke the user export logic to...
CVE-2023-26045
CVE-2023-26045 affects NodeBB up to 2.8.7, where a path traversal in the user export path (due to object destructuring) could be triggered by a specially crafted payload to arbitrarily execute local JavaScript. Affected range: 2.5.0 through
CVE-2023-26045 NodeBB vulnerable to path traversal and code execution via prototype vulnerability
NodeBB is Node.js based forum software. Starting in version 2.5.0 and prior to version 2.8.7, due to the use of the object destructuring assignment syntax in the user export code path, combined with a path traversal vulnerability, a specially crafted payload could invoke the user export logic to...
CVE-2022-26045
Improper buffer restrictions in some IntelR XMMTM 7560 Modem software before version M27560R01.2146.00 may allow a privileged user to potentially enable escalation of privilege via physical access...
CVE-2022-26045
Improper buffer restrictions in some IntelR XMMTM 7560 Modem software before version M27560R01.2146.00 may allow a privileged user to potentially enable escalation of privilege via physical access...
CVE-2022-26045
Intel XMM 7560 Modem software (M2_7560_R_01.2146.00 and M2_7560_V2_01.2146.00) contains an improper buffer restriction that may allow a privileged user to escalate privileges with physical or adjacent access. The CVE-2022-26045 issue affects Intel XMM 7560 M.2 software for Windows/Linux; remediat...
CVE-2021-26045
...
CVE-2021-26045
CVE-2021-26045 is rejected/not used per the Initial Description.
CVE-2020-26045
creationtimestamp| type| source ---|---|--- 2021-01-05 19:25:27+00:00| seen| https://t.me/cibsecurity/21580...
CVE-2020-26045
CVE-2020-26045 affects FUEL CMS 1.4.11 via SQL injection in the name parameter of /fuel/permissions/create/. Exploitation could compromise the application and allow data access/modification per the cited sources. The connected documents confirm the vulnerability but do not provide a concrete reme...
Linkliste 1.2 Index.PHP Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/26045/info Linkliste is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and t...