22 matches found
CVE-2026-34732
WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AVideo CreatePlugin template for list.json.php does not include any authentication or authorization check. While the companion templates add.json.php and delete.json.php both require admin privileges, the list.json.php...
CVE-2026-34732 AVideo: Missing Authentication in CreatePlugin list.json.php Template Affects 21 Endpoints
WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AVideo CreatePlugin template for list.json.php does not include any authentication or authorization check. While the companion templates add.json.php and delete.json.php both require admin privileges, the list.json.php...
CVE-2026-34732 AVideo: Missing Authentication in CreatePlugin list.json.php Template Affects 21 Endpoints
WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AVideo CreatePlugin template for list.json.php does not include any authentication or authorization check. While the companion templates add.json.php and delete.json.php both require admin privileges, the list.json.php...
CVE-2026-34732
creationtimestamp| type| source ---|---|--- 2026-03-30 12:55:02+00:00| published-proof-of-concept| https://github.com/WWBN/AVideo/security/advisories/GHSA-g2mg-cgr6-vmv7 2026-03-31 22:20:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mif7k5kwhx2n...
MAL-2025-34732 Malicious code in terra-2x4zu-4smbs-indigo-project (npm)
The package terra-2x4zu-4smbs-indigo-project was found to contain malicious code...
CVE-2023-34732
An issue in the userId parameter in the change password function of Flytxt NEON-dX v0.0.1-SNAPSHOT-6.9-qa-2-9-g5502a0c allows attackers to execute brute force attacks to discover user passwords...
CVE-2023-34732
creationtimestamp| type| source ---|---|--- 2025-05-12 18:47:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3loyn2dzjuq2e 2025-05-12 22:48:43+00:00| seen| https://t.me/cvedetector/25116...
CVE-2023-34732
An issue in the userId parameter in the change password function of Flytxt NEON-dX v0.0.1-SNAPSHOT-6.9-qa-2-9-g5502a0c allows attackers to execute brute force attacks to discover user passwords...
CVE-2023-34732
An issue in the userId parameter in the change password function of Flytxt NEON-dX v0.0.1-SNAPSHOT-6.9-qa-2-9-g5502a0c allows attackers to execute brute force attacks to discover user passwords...
CVE-2023-34732
CVE-2023-34732 affects Flytxt NEON-dX v0.0.1-SNAPSHOT-6.9-qa-2-9-g5502a0c. The issue is in the userId parameter of the change password function, enabling brute-force attempts to reveal user passwords. Root cause: unvalidated userId input in the change-password path. Impact: potential password dis...
CVE-2024-34732
In RGXMMUCacheInvalidate of rgxmem.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-34732
In RGXMMUCacheInvalidate of rgxmem.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-34732
This CVE (CVE-2024-34732) concerns the Android kernel’s RGXMMUCacheInvalidate routine in rgxmem.c, where a race condition can enable arbitrary code execution and local privilege escalation without extra privileges or user interaction. The vulnerability description is consistently reported across ...
CVE-2024-34732
In RGXMMUCacheInvalidate of rgxmem.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2022-34732
creationtimestamp| type| source ---|---|--- 2022-09-13 22:25:39+00:00| seen| https://t.me/cibsecurity/49680...
CVE-2022-34732
Microsoft ODBC Driver Remote Code Execution Vulnerability...
CVE-2022-34732
Microsoft ODBC Driver Remote Code Execution Vulnerability...
CVE-2022-34732
CVE-2022-34732 corresponds to a Microsoft ODBC Driver Remote Code Execution vulnerability. According to the provided data, it has a CVSS v3.1 base score of 8.8 (HIGH) with network attack, no privileges required, user interaction needed, and impacts to confidentiality, integrity, and availability....
CVE-2022-34732 Microsoft ODBC Driver Remote Code Execution Vulnerability
...
CVE-2021-34732
creationtimestamp| type| source ---|---|--- 2021-09-02 07:35:48+00:00| seen| https://t.me/cibsecurity/28206...