EUVD-2026-2901

Markright 1.0 contains a persistent cross-site scripting vulnerability that allows attackers to embed malicious payloads in markdown files. Attackers can upload specially crafted markdown files that execute arbitrary JavaScript when opened, potentially enabling remote code execution on the victim...

Linux Distros Unpatched Vulnerability : CVE-2014-2901

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wolfssl before 3.2.0 does not properly issue certificates for a server's hostname. CVE-2014-2901 Note that Nessus relies on the presence of the package as...

CVE-2023-2901

A vulnerability was found in NFine Rapid Development Platform 20230511. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /SystemManage/User/GetGridJson?search=false=1680855479750=50=1=FCreatorTime+desc=asc. The manipulation leads to...

CVE-2019-2901

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

CVE-2025-2901

creationtimestamp| type| source ---|---|--- 2025-03-28 14:27:36+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9353...

CVE-2022-2901

Improper Authorization in GitHub repository chatwoot/chatwoot prior to 2.8...

CVE-2024-2901

A vulnerability has been found in Tenda AC7 15.03.06.44 and classified as critical. This vulnerability affects the function setSchedWifi of the file /goform/openSchedWifi. The manipulation of the argument schedEndTime leads to stack-based buffer overflow. The attack can be initiated remotely. The...

CVE-2024-2901

CVE-2024-2901 affects Tenda AC7 (15.03.06.44) in the /goform/openSchedWifi endpoint via the setSchedWifi function. The issue is a stack-based buffer overflow caused by manipulating the schedEndTime parameter, enabling remote in‑the‑wild exploitation as disclosed. No official fix version is provid...

CVE-2014-2901

creationtimestamp| type| source ---|---|--- 2024-02-26 09:12:04+00:00| seen| https://t.me/ctinow/193175...

MAL-2024-432 Malicious code in wlwz-2312-2901 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d3019022274d76187ebb6d233d2ea901283f5a393668499a94637b57881c04f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2019-2901

creationtimestamp| type| source ---|---|--- 2024-01-09 15:17:18+00:00| seen| https://t.me/ctinow/165050...

CVE-2023-2901

CVE-2023-2901 affects NFine Rapid Development Platform 20230511. The vulnerability exists in an unknown function of the endpoint /SystemManage/User/GetGridJson?... which leads to improper access controls. It is exploitable remotely and, per multiple sources, the exploit has been disclosed publicl...

SUSE CVE-2011-2901

Off-by-one error in the addrok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service host crash via unspecified hypercalls that ignore virtual-address bits...

CVE-2022-2901 Improper Authorization in chatwoot/chatwoot

Improper Authorization in GitHub repository chatwoot/chatwoot prior to 2.8...

CVE-2022-2901

CVE-2022-2901 affects chatwoot/chatwoot prior to 2.8. Root cause is improper authorization. Documented impact is high-severity, with access to unauthorized operations implied but not detailed in the sources. Remediation: upgrade to version 2.8 or later (fix referenced in multiple sources). Additi...

CVE-2022-2901 Improper Authorization in chatwoot/chatwoot

Improper Authorization in GitHub repository chatwoot/chatwoot prior to 2.8...

Mageia: Security Advisory (MGASA-2013-0278)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:2901-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 8 : dovecot (CESA-2020:2901)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:2901 advisory. - dovecot: malformed NOOP commands leads to DoS CVE-2020-10957 Note that Nessus has not tested for this issue but has instead relied only on the application's...

Important: Red Hat Security Advisory: mysql:8.0 security update

An update for the mysql:8.0 module is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...