10 matches found
CVE-2026-33881
Windmill is an open-source developer platform for internal code: APIs, background jobs, workflows and UIs. Workspace environment variable values are interpolated into JavaScript string literals without escaping single quotes in the NativeTS executor. A workspace admin who sets a custom environmen...
CVE-2026-33881
Windmill is an open-source developer platform for internal code: APIs, background jobs, workflows and UIs. Workspace environment variable values are interpolated into JavaScript string literals without escaping single quotes in the NativeTS executor. A workspace admin who sets a custom environmen...
CVE-2023-33881
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...
CVE-2022-33881
Parsing a maliciously crafted PRT file can force Autodesk AutoCAD 2023 to read beyond allocated boundaries. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process...
CVE-2023-33881
creationtimestamp| type| source ---|---|--- 2023-07-12 12:35:21+00:00| seen| https://t.me/cibsecurity/66461...
CVE-2023-33881
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...
CVE-2023-33881
Summary: CVE-2023-33881 describes a missing permission check in the telephony service that can cause local information disclosure without extra privileges. The issue is documented across multiple sources (NVD/Red Hat/CVE listing) with the same core impact: local information leakage, low attack co...
CVE-2022-33881
creationtimestamp| type| source ---|---|--- 2022-07-29 20:13:50+00:00| seen| https://t.me/cibsecurity/47274...
CVE-2022-33881
CVE-2022-33881 affects Autodesk AutoCAD 2023 via parsing of PRT files, causing an out-of-bounds read in a component handling PRT data and potentially enabling code execution in the current process. Multiple trusted sources (NVD, Red Hat advisory, ZDI) describe remote code execution with user inte...
uni-oldenburg.de XSS vulnerability
Vulnerable URL: https://www.uni-oldenburg.de/nc/suche/?q=ddudda%3C!%27/!%22/!%27/%22/--!%3E%3CInput/Type=Text%20AutoFocus%20/;%20OnFocus=confirm/openbugbounty/%20//%3E%3CSvg%3E=FORID%3A9=UTF-8=iso-8859-1=009619950304644246032%3Atmpbaar2o8i Details: Description| Value ---|--- Patched:| Yes, at...