13 matches found
CVE-2026-31891
creationtimestamp| type| source ---|---|--- 2026-03-18 12:41:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhdj4uuvem2c 2026-03-18 12:42:11+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhdj5wo5gl26 2026-03-20 19:40:10+00:00| seen|...
CVE-2026-31891
Cockpit is a headless content management system. Any Cockpit CMS instance running version 2.13.4 or earlier with API access enabled is potentially affected by a a SQL Injection vulnerability in the MongoLite Aggregation Optimizer. Any deployment where the /api/content/aggregate/model endpoint is...
CVE-2021-31891
A vulnerability has been identified in Desigo CC All versions with OIS Extension Module, GMA-Manager All versions with OIS running on Debian 9 or earlier, Operation Scheduler All versions with OIS running on Debian 9 or earlier, Siveillance Control All versions with OIS running on Debian 9 or...
CVE-2025-31891
creationtimestamp| type| source ---|---|--- 2025-04-01 18:03:33+00:00| seen| https://t.me/cvedetector/21756...
WordPress Gosign – Posts Slider Block plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by theviper17 in WordPress Plugin Gosign – Posts Slider Block versions = 1.1.0...
CVE-2025-31891
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Gosign Gosign – Posts Slider Block gosign-posts-slider-block allows Stored XSS.This issue affects Gosign – Posts Slider Block: from n/a through = 1.1.0...
CVE-2025-31891
CVE-2025-31891 is a stored XSS in Gosign – Posts Slider Block. Affected versions: up to 1.1.0. Root cause: improper input neutralization during web page generation. Impact: stored exploit in the block’s output. Current patch status: Unpatched; monitor for vendor update and apply fixed version whe...
CVE-2025-31891 WordPress Gosign – Posts Slider Block plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Gosign Gosign – Posts Slider Block allows Stored XSS. This issue affects Gosign – Posts Slider Block: from n/a through 1.1.0...
CVE-2024-31891 IBM Storage Scale privilege escalation
IBM Storage Scale GUI 5.1.9.0 through 5.1.9.6 and 5.2.0.0 through 5.2.1.1 contains a local privilege escalation vulnerability. A malicious actor with command line access to the 'scalemgmt' user can elevate privileges to gain root access to the host operating system...
CVE-2024-31891 IBM Storage Scale privilege escalation
IBM Storage Scale GUI 5.1.9.0 through 5.1.9.6 and 5.2.0.0 through 5.2.1.1 contains a local privilege escalation vulnerability. A malicious actor with command line access to the 'scalemgmt' user can elevate privileges to gain root access to the host operating system...
CVE-2021-31891
A vulnerability has been identified in Desigo CC All versions with OIS Extension Module, GMA-Manager All versions with OIS running on Debian 9 or earlier, Operation Scheduler All versions with OIS running on Debian 9 or earlier, Siveillance Control All versions with OIS running on Debian 9 or...
CVE-2021-31891
CVE-2021-31891 describes an OS command injection in Siemens Siveillance OIS. Affected products include Desigo CC (OIS Extension Module), GMA-Manager (OIS on Debian 9 or earlier), Operation Scheduler (OIS on Debian 9 or earlier), Siveillance Control (OIS on Debian 9 or earlier), and Siveillance Co...
Siemens Siveillance OIS
1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: Siveillance OIS Vulnerability: OS Command Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to execute code on...