19 matches found
CVE-2024-35749
Authentication Bypass by Spoofing vulnerability in Acurax Under Construction / Maintenance Mode from Acurax allows Authentication Bypass.This issue affects Under Construction / Maintenance Mode from Acurax: from n/a through 2.6...
CVE-2024-35749 WordPress Under Construction / Maintenance Mode from Acurax plugin <= 2.6 - IP Bypass vulnerability
Authentication Bypass by Spoofing vulnerability in Acurax Under Construction / Maintenance Mode from Acurax allows Authentication Bypass.This issue affects Under Construction / Maintenance Mode from Acurax: from n/a through 2.6...
CVE-2024-35749
CVE-2024-35749 describes an unauthenticated IP spoofing flaw in the Acurax Under Construction / Maintenance Mode WordPress plugin, affecting versions up to 2.6. The vulnerability enables bypass of access controls by spoofing the client IP, effectively allowing an attacker to bypass maintenance mo...
WordPress Under Construction / Maintenance Mode from Acurax Plugin <= 2.6 is vulnerable to Bypass Vulnerability
Software Under Construction / Maintenance Mode from Acurax Type Plugin Vulnerable versions = 2.6 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Bypass Vulnerability CVE CVE-2024-35749 Patch priority Low CVSS severity Low 3.7 Developer Claim ownership PSID f51ad499112f Credits Mika...
ruby:3.1 security, bug fix, and enhancement update
ruby 3.1.5-143 - Upgrade to Ruby 3.1.5. Resolves: RHEL-35748 - Fix buffer overread vulnerability in StringIO. Resolves: RHEL-35749 - Fix RCE vulnerability with .rdocoptions in RDoc. Resolves: RHEL-35750 - Fix arbitrary memory address read vulnerability with Regex search. Resolves: RHEL-35751...
CVE-2023-35749
D-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...
CVE-2023-35749 D-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability
D-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...
CVE-2022-35749
Technical details about CVE-2022-35749 are not provided in the supplied documents. Available references confirm the CVE title and severity, but no affected product/version or root cause are detailed here. Monitor for official disclosures and updates.
CVE-2022-35749 Windows Digital Media Receiver Elevation of Privilege Vulnerability
...
CVE-2022-35749 Windows Digital Media Receiver Elevation of Privilege Vulnerability
...
Wordpress Simple Job Board 2.9.3 Plugin - Local File Inclusion Exploit
Exploit Title: Wordpress Plugin Simple Job Board 2.9.3 - Local File Inclusion Exploit Author: Ven3xy Vendor Homepage: https://wordpress.org/plugins/simple-job-board/ Software Link: https://downloads.wordpress.org/plugin/simple-job-board.2.9.3.zip Version: 2.9.3 Tested on: Ubuntu 20.04 LTS CVE :...
WordPress Simple Job Board 2.9.3 Local File Inclusion
Exploit Title: Wordpress Plugin Simple Job Board 2.9.3 - Local File Inclusion Date: 2022-02-06 Exploit Author: Ven3xy Vendor Homepage: https://wordpress.org/plugins/simple-job-board/ Software Link: https://downloads.wordpress.org/plugin/simple-job-board.2.9.3.zip Version: 2.9.3 Tested on: Ubuntu...
Wordpress Plugin Simple Job Board 2.9.3 - Local File Inclusion
Exploit Title: Wordpress Plugin Simple Job Board 2.9.3 - Local File Inclusion Date: 2022-02-06 Exploit Author: Ven3xy Vendor Homepage: https://wordpress.org/plugins/simple-job-board/ Software Link: https://downloads.wordpress.org/plugin/simple-job-board.2.9.3.zip Version: 2.9.3 Tested on: Ubuntu...
Simple JobBoard Authenticated File Read
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Simple JobBoard Authenticated File Read Vulnerability', 'Description' = %q This module exploits an authenticated directory traversal vulnerabilit...
Wordpress Plugin Simple Job Board 2.9.3 - Authenticated File Read (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Simple JobBoard Authenticated File Read Vulnerability', 'Description' = %q This module exploits an authenticated directory traversal vulnerabilit...
CVE-2020-35749
creationtimestamp| type| source ---|---|--- 2021-01-21 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/49450 2021-05-31 04:04:51+00:00| seen| https://t.me/pwnwikizhchannel/559 2022-02-07 20:19:03+00:00| published-proof-of-concept| https://t.me/intelexch/7752 2024-11-14...
CVE-2020-35749
Directory traversal vulnerability in class-simplejobboardresumedownloadhandler.php in the Simple Board Job plugin 2.9.3 and earlier for WordPress allows remote attackers to read arbitrary files via the sjbfile parameter to wp-admin/post.php...
CVE-2020-35749
The CVE-2020-35749 issue affects WordPress Simple Job Board plugin versions prior to 2.9.4. It allows an authenticated user with the download_resume capability to exploit an LFI (local file inclusion) by not validating the sjb_file parameter when viewing a resume, enabling reading arbitrary serve...
CVE-2020-35749
Directory traversal vulnerability in class-simplejobboardresumedownloadhandler.php in the Simple Board Job plugin 2.9.3 and earlier for WordPress allows remote attackers to read arbitrary files via the sjbfile parameter to wp-admin/post.php...