CVE-2022-30561

When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in, the attacker could log in to the device by replaying the user's login packet...

CVE-2025-30561

Cross-Site Request Forgery CSRF vulnerability in Henrique Mouta CAS Maestro cas-maestro allows Stored XSS.This issue affects CAS Maestro: from n/a through = 1.1.3...

CVE-2025-30561

CVE-2025-30561: In CAS Maestro, a CSRF can lead to stored XSS in versions up to 1.1.3. The Wordfence vulnerability listing confirms the affected product/version and notes the patch status as pending/unpatched; no specific remediation (patch version) is provided in the available documents. Monitor...

CVE-2025-30561 WordPress CAS Maestro plugin <= 1.1.3 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Henrique Mouta CAS Maestro allows Stored XSS. This issue affects CAS Maestro: from n/a through 1.1.3...

Dahua ASI7213X-T1 Authentication Bypass By Capture-Replay (CVE-2022-30561)

When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in, the attacker could log in to the device by replaying the user's login packet. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more informatio...

CVE-2024-30561

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scientech It Solution Appointment Calendar allows Reflected XSS.This issue affects Appointment Calendar: from n/a through 2.9.6...

CVE-2024-30561 WordPress Appointment Calendar plugin <= 2.9.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Scientech It Solution Appointment Calendar allows Reflected XSS.This issue affects Appointment Calendar: from n/a through 2.9.6...

CVE-2024-30561

CVE-2024-30561 is a Reflected Cross‑Site Scripting vulnerability in the WordPress plugin Appointment Calendar by Scientech It Solution. It affects versions listed as “from n/a through 2.9.6,” arising from improper neutralization of input during web page generation. The CVSSv3.1 base score is 7.1 ...

WordPress Appointment Calendar Plugin <= 2.9.6 is vulnerable to Cross Site Scripting (XSS)

Software Appointment Calendar Type Plugin Vulnerable versions = 2.9.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-30561 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 1a521c54a658 Credits Dimas Maulana Required privilege...

CVE-2023-30561 Lack of Cryptographic Security of IUI Bus

The data flowing between the PCU and its modules is insecure. A threat actor with physical access could potentially read or modify data by attaching a specially crafted device while an infusion is running...

BD Alaris System with Guardrails Suite MX

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.2 ATTENTION : Low attack complexity Vendor : Becton, Dickinson and Company BD Equipment : Alaris PCU, Guardrails Editor, Systems Manager, Calculation Services, CQI Reporter Vulnerabilities : Insufficient Verification of Data Authenticity, Missing...

CVE-2022-30561

creationtimestamp| type| source ---|---|--- 2022-06-28 18:36:04+00:00| seen| Telegram/dyv3LG-atVIwoPVCNNGQlNSC7JaBQA5B1ybjPvU2w1Pk...

CVE-2022-30561

When an attacker uses a man-in-the-middle attack to sniff the request packets with success logging in, the attacker could log in to the device by replaying the user's login packet...

CVE-2022-30561

The CVE-2022-30561 entry concerns Dahua ASI7XXX devices (and related Dahua product families) vulnerable to an authentication bypass via capture-replay. The root cause is an MITM-capable attacker who can sniff login traffic and replay authentication data to gain access without a password (CWE-294)...

GLSA-202107-49 : Chromium, Google Chrome: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202107-49 Chromium, Google Chrome: Multiple vulnerabilities Multiple vulnerabilities have been discovered in chromium, and google-chrome. Please review the CVE identifiers referenced below for details. Impact : Please review the...

CVE-2021-30561

creationtimestamp| type| source ---|---|--- 2021-08-19 12:31:00+00:00| seen| https://t.me/CyberSecurityTechnologies/4103 2021-08-25 19:07:56+00:00| seen| MISP/552ebc2a-5538-4af6-816f-aa5a4da4ccf5 2024-11-14 06:09:46+00:00| seen| MISP/8ad41992-81f4-4b91-8e8a-05deaab255e0...

Security update for opera (important)

openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2021:1095-1 Rating: important References: Cross-References: CVE-2021-30541 CVE-2021-30560 CVE-2021-30561 CVE-2021-30562 CVE-2021-30563 CVE-2021-30564 Affected Products: openSUSE Leap 15.3:NonFree An update that fixes...

CVE-2021-30561

Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

CVE-2021-30561

Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

CVE-2021-30561

The connected advisories confirm CVE-2021-30561 is a type confusion in the V8 component of the Chromium engine, affecting Google Chrome/Chromium prior to version 91.0.4472.164. The vulnerability could allow remote code execution via a crafted HTML page, with heap corruption as a potential outcome...