18 matches found
CVE-2024-29114
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in W3 Eden, Inc. Download Manager allows Stored XSS.This issue affects Download Manager: from n/a through 3.2.84...
CVE-2023-29114 Unauthorized System Log Disclosure in Enel X JuiceBox
System logs could be accessed through web management application due to a lack of access control. An attacker can obtain the following sensitive information: • Wi-Fi access point credentials to which the EV charger can connect. • APN web address and credentials. • IPSEC credentials...
CVE-2024-29114
creationtimestamp| type| source ---|---|--- 2024-03-19 16:26:41+00:00| seen| https://t.me/ctinow/211688...
CVE-2024-29114
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in W3 Eden, Inc. Download Manager allows Stored XSS.This issue affects Download Manager: from n/a through 3.2.84...
CVE-2024-29114
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in W3 Eden, Inc. Download Manager allows Stored XSS.This issue affects Download Manager: from n/a through 3.2.84...
CVE-2024-29114 WordPress Download Manager plugin <= 3.2.84 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in W3 Eden, Inc. Download Manager allows Stored XSS.This issue affects Download Manager: from n/a through 3.2.84...
CVE-2024-29114 WordPress Download Manager plugin <= 3.2.84 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in W3 Eden, Inc. Download Manager allows Stored XSS.This issue affects Download Manager: from n/a through 3.2.84...
CVE-2024-29114
CVE-2024-29114 is a Stored XSS in the WordPress Download Manager plugin (Download Manager Pro). Affected: Download Manager from n/a up to version 3.2.84. The vulnerability is addressed in patched builds; remediation is to upgrade to a fixed release.
WordPress Download Manager Plugin <= 3.2.84 is vulnerable to Cross Site Scripting (XSS)
Software Download Manager Type Plugin Vulnerable versions = 3.2.84 Fixed in 3.2.85 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29114 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID ae823e29c6b0 Credits LVT-tholv2k Required privilege...
CVE-2022-29114
creationtimestamp| type| source ---|---|--- 2022-05-11 00:46:18+00:00| seen| https://t.me/cibsecurity/42324 2022-05-11 16:04:01+00:00| seen| https://t.me/truesecator/2928...
CVE-2022-29114
Windows Print Spooler Information Disclosure Vulnerability...
CVE-2022-29114
Windows Print Spooler Information Disclosure Vulnerability...
CVE-2022-29114
Windows Print Spooler Information Disclosure Vulnerability...
CVE-2022-29114 Windows Print Spooler Information Disclosure Vulnerability
...
CVE-2022-29114
Technical details about CVE-2022-29114 are not provided in the supplied documents. No affected products, root cause, impact, or fixes are specified here. Monitor for updates from the provided references as needed.
CVE-2021-29114
creationtimestamp| type| source ---|---|--- 2021-12-07 14:21:40+00:00| seen| https://t.me/cibsecurity/33432...
CVE-2021-29114 SQL injection vulnerability in ArcGIS Server
A SQL injection vulnerability in feature services provided by Esri ArcGIS Server 10.9 and below allows a remote, unauthenticated attacker to impact the confidentiality, integrity and availability of targeted services via specifically crafted queries...
CVE-2021-29114
The CVE-2021-29114 entry corresponds to a SQL injection in Esri ArcGIS Server feature services (10.9 and earlier). The vulnerability arises in how external queries are processed, allowing a remote, unauthenticated attacker to impact confidentiality, integrity, and availability of targeted service...