23 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-28940
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Because of a incorrect escaped exec command in MagpieRSS in 0.72 in the /extlib/Snoopy.class.inc file, it is possible to add a extra command to the curl binary...
CVE-2025-28940
creationtimestamp| type| source ---|---|--- 2025-08-13 13:26:34+00:00| seen| MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868...
CVE-2022-28940
In H3C MagicR100 =V100R005, the / Ajax / ajaxget interface can be accessed without authorization. It sends a large amount of data through ajaxmsg to carry out DOS attack...
CVE-2025-28940
Cross-Site Request Forgery CSRF vulnerability in arkapravamajumder Back To Top backtotop allows Cross Site Request Forgery.This issue affects Back To Top: from n/a through = 2.0...
CVE-2025-28940
Cross-Site Request Forgery CSRF vulnerability in arkapravamajumder Back To Top backtotop allows Cross Site Request Forgery.This issue affects Back To Top: from n/a through = 2.0...
CVE-2025-28940 WordPress Back To Top Plugin <= 2.0 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in arkapravamajumder Back To Top backtotop allows Cross Site Request Forgery.This issue affects Back To Top: from n/a through = 2.0...
CVE-2025-28940
CVE-2025-28940 refers to a CSRF vulnerability in the WordPress plugin Back To Top (
CVE-2025-28940 WordPress Back To Top Plugin <= 2.0 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in arkapravamajumder Back To Top backtotop allows Cross Site Request Forgery.This issue affects Back To Top: from n/a through = 2.0...
golang security update
1.21.9-2 - Rebuilt for z-stream - Related: RHEL-24312 - Related: RHEL-28940 1.21.9-1 - Fix CVE-2024-1394 - Fix CVE-2023-45288 - Resolves RHEL-24312 - Resolves RHEL-28940...
CVE-2024-28940
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability...
CVE-2024-28940 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability
...
CVE-2024-28940
Summary (CVE-2024-28940) Affects Microsoft’s OLE DB Driver for SQL Server. The vulnerability is a remote code execution flaw in the OLE DB Driver components, enabling an attacker to run arbitrary code on a vulnerable system over the network, with high impact (C/H/I/A = High). The CVSS v3.1 metric...
CVE-2024-28940 Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability
...
CVE-2022-28940
creationtimestamp| type| source ---|---|--- 2022-05-04 20:35:34+00:00| seen| https://t.me/cibsecurity/41943...
CVE-2022-28940
In H3C MagicR100 =V100R005, the / Ajax / ajaxget interface can be accessed without authorization. It sends a large amount of data through ajaxmsg to carry out DOS attack...
CVE-2022-28940
In H3C MagicR100 =V100R005, the / Ajax / ajaxget interface can be accessed without authorization. It sends a large amount of data through ajaxmsg to carry out DOS attack...
CVE-2022-28940
The CVE-2022-28940 entry concerns H3C MagicR100 (
CVE-2021-28940
Because of a incorrect escaped exec command in MagpieRSS in 0.72 in the /extlib/Snoopy.class.inc file, it is possible to add a extra command to the curl binary. This creates an issue on the /scripts/magpiedebug.php and /scripts/magpiesimple.php page that if you send a specific https url in the RS...
CVE-2021-28940
Because of a incorrect escaped exec command in MagpieRSS in 0.72 in the /extlib/Snoopy.class.inc file, it is possible to add a extra command to the curl binary. This creates an issue on the /scripts/magpiedebug.php and /scripts/magpiesimple.php page that if you send a specific https url in the RS...
CVE-2021-28940
Because of a incorrect escaped exec command in MagpieRSS in 0.72 in the /extlib/Snoopy.class.inc file, it is possible to add a extra command to the curl binary. This creates an issue on the /scripts/magpiedebug.php and /scripts/magpiesimple.php page that if you send a specific https url in the RS...