PT-2025-34181

Name of the Vulnerable Software and Affected Versions: Oxford Instruments Imaris Viewer affected versions not specified Description: The software contains a remote code execution issue due to an uninitialized pointer during IMS file parsing. Recommendations: At the moment, there is no information...

CVE-2022-34181

Jenkins xUnit Plugin 3.0.8 and earlier implements an agent-to-controller message that creates a user-specified directory if it doesn't exist, and parsing files inside it as test results, allowing attackers able to control agent processes to create an arbitrary directory on the Jenkins controller ...

CVE-2021-34181

Cross Site Scripting XSS vulnerability in TomExam 3.0 via pname parameter to list.thtml...

CVE-2023-34181

A vulnerability in gaap WP-Cirrus wp-cirrus.This issue affects WP-Cirrus: from n/a through = 0.6.11...

CVE-2023-34181

Cross-Site Request Forgery CSRF vulnerability in WP-Cirrus plugin = 0.6.11 versions...

CVE-2023-34181 WordPress WP-Cirrus Plugin <= 0.6.11 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in WP-Cirrus plugin = 0.6.11 versions...

CVE-2023-34181

CVE-2023-34181 is a CSRF vulnerability in the WordPress WP-Cirrus plugin (versions 0.6.11 or equivalent patch when released.

CVE-2021-34181

creationtimestamp| type| source ---|---|--- 2023-01-05 20:58:25+00:00| seen| https://t.me/cibsecurity/54036...

CVE-2021-34181

Cross Site Scripting XSS vulnerability in TomExam 3.0 via pname parameter to list.thtml...

CVE-2021-34181

The connected documents confirm CVE-2021-34181 is a Cross Site Scripting (XSS) vulnerability in TomExam 3.0 exploitable via the p_name parameter passed to list.thtml. The root cause is an input handling/output encoding weakness that allows script injection. Affected software is TomExam 3.0; no ex...

Jenkins Enterprise and Operations Center 2.303.x < 2.303.30.0.14 / 2.332.4.1 / 2.346.1.4 Multiple Vulnerabilities (CloudBees Security Advisory 2022-06-22)

The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.303.x prior to 2.303.30.0.14, or 2.x prior to 2.332.4.1 or 2.346.1.4. It is, therefore, affected by multiple vulnerabilities, including the following: - Jenkins Pipeline: Input Step Plugin...

com.thalesgroup.jenkins-ci.plugins:cpptest (>=0.10 <=0.14), org.jenkins-ci.plugins:gallio (>=1.6 <=1.8) +5 more potentially affected by CVE-2022-34181 via org.jenkins-ci.plugins:xunit (>=1.102 <=1.91)

org.jenkins-ci.plugins:xunit MAVEN version =1.102, =0.10, =1.6, =0.13, =1.0, =0.16, =0.61 Source cves: CVE-2022-34181 Source advisory: OSV:GHSA-298J-9Q4W-6RM4...

CVE-2022-34181

Jenkins xUnit Plugin 3.0.8 and earlier implements an agent-to-controller message that creates a user-specified directory if it doesn't exist, and parsing files inside it as test results, allowing attackers able to control agent processes to create an arbitrary directory on the Jenkins controller ...

CVE-2022-34181

Jenkins xUnit Plugin 3.0.8 and earlier implements an agent-to-controller message that creates a user-specified directory if it doesn't exist, and parsing files inside it as test results, allowing attackers able to control agent processes to create an arbitrary directory on the Jenkins controller ...

CVE-2022-34181

CVE-2022-34181 concerns Jenkins xUnit Plugin (versions ≤ 3.0.8). The vulnerability arises from an agent-to-controller message that creates a user-specified directory on the Jenkins controller and parses files inside it as test results. This allows an attacker who can control agent processes to (1...

Firefox _moveToEdgeShift方式远程代码执行漏洞

BUGTRAQ ID: 34181 CVECAN ID: CVE-2009-1044 Firefox是一款非常流行的开放源码WEB浏览器。 Firefox中XUL树方式moveToEdgeShift在某些情况下可能会对仍在使用的对象触发垃圾收集例程，之后浏览器在试图访问之前已被释放的对象时会崩溃。攻击者可以利用这种崩溃在用户机器上执行任意指令。 Mozilla Firefox 3.0.8 Debian ------ Debian已经为此发布了一个安全公告（DSA-1756-1）以及相应补丁: DSA-1756-1：New xulrunner packages fix multiple...