20 matches found
CVE-2023-31059
Repetier Server through 1.4.10 allows ..%5c directory traversal for reading files that contain credentials, as demonstrated by connectionLost.php...
CVE-2023-31060
Repetier Server through 1.4.10 executes as SYSTEM. This can be leveraged in conjunction with CVE-2023-31059 for full compromise...
EUVD-2025-31059
Malicious code in bioql PyPI...
EUVD-2023-35393
Malicious code in bioql PyPI...
CVE-2025-31059 WordPress WBW Product Table PRO plugin <= 2.2.6 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in woobewoo WBW Product Table PRO woo-producttables-pro allows SQL Injection.This issue affects WBW Product Table PRO: from n/a through = 2.2.6...
WordPress WBW Product Table PRO plugin <= 2.2.6 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin WBW Product Table PRO versions = 2.2.6...
CVE-2022-31059
Discourse Calendar is a calendar plugin for Discourse, an open-source messaging app. Prior to version 1.0.1, parsing and rendering of Event names can be susceptible to cross-site scripting XSS attacks. This vulnerability only affects sites which have modified or disabled Discourse’s default Conte...
CVE-2023-31059
creationtimestamp| type| source ---|---|--- 2023-04-24 07:14:02+00:00| seen| https://t.me/cibsecurity/62676 2023-04-24 07:14:03+00:00| seen| https://t.me/cibsecurity/62677 2025-04-20 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-04-20 2026-04-10 00:00:00+00:00| see...
CVE-2023-31060
Repetier Server through 1.4.10 executes as SYSTEM. This can be leveraged in conjunction with CVE-2023-31059 for full compromise...
Design/Logic Flaw
Repetier Server through 1.4.10 executes as SYSTEM. This can be leveraged in conjunction with CVE-2023-31059 for full compromise...
CVE-2023-31060
Repetier Server through 1.4.10 executes as SYSTEM. This can be leveraged in conjunction with CVE-2023-31059 for full compromise...
CVE-2023-31059
Repetier Server through 1.4.10 allows ..%5c directory traversal for reading files that contain credentials, as demonstrated by connectionLost.php...
CVE-2023-31060
CVE-2023-31060 affects Repetier Server up to version 1.4.10, where the process can execute with SYSTEM privileges. The description notes that this can be leveraged in conjunction with CVE-2023-31059 for full compromise. Connected documents provide CVE-2023-31059 details (directory traversal), but...
CVE-2023-31059
Repetier Server ( Version 1.4.10 and earlier ) is affected by a directory traversal vulnerability ( CVE-2023-31059 ) that allows reading files containing credentials via a ..%5c traversal vector, as demonstrated by connectionLost.php. Affected component is the server software itself; root cause i...
CVE-2023-31060
Repetier Server through 1.4.10 executes as SYSTEM. This can be leveraged in conjunction with CVE-2023-31059 for full compromise...
CVE-2022-31059
creationtimestamp| type| source ---|---|--- 2022-06-15 00:19:21+00:00| seen| https://t.me/cibsecurity/44461...
CVE-2022-31059 Discourse Calendar Event names susceptible to Cross-site Scripting
Discourse Calendar is a calendar plugin for Discourse, an open-source messaging app. Prior to version 1.0.1, parsing and rendering of Event names can be susceptible to cross-site scripting XSS attacks. This vulnerability only affects sites which have modified or disabled Discourse’s default Conte...
CVE-2022-31059
CVE-2022-31059 affects the Discourse Calendar plugin for Discourse. Before version 1.0.1, parsing and rendering of Event names can be vulnerable to cross-site scripting (XSS) attacks when a site has modified or disabled Discourse’s default Content Security Policy. The issue is patched in version ...
CVE-2021-31059
...
CVE-2021-31059
CVE-2021-31059 entry is rejected/not used and does not represent an active vulnerability.