CVE-2024-35749

Authentication Bypass by Spoofing vulnerability in Acurax Under Construction / Maintenance Mode from Acurax allows Authentication Bypass.This issue affects Under Construction / Maintenance Mode from Acurax: from n/a through 2.6...

CVE-2024-35749

CVE-2024-35749 describes an unauthenticated IP spoofing flaw in the Acurax Under Construction / Maintenance Mode WordPress plugin, affecting versions up to 2.6. The vulnerability enables bypass of access controls by spoofing the client IP, effectively allowing an attacker to bypass maintenance mo...

CVE-2024-35749 WordPress Under Construction / Maintenance Mode from Acurax plugin <= 2.6 - IP Bypass vulnerability

Authentication Bypass by Spoofing vulnerability in Acurax Under Construction / Maintenance Mode from Acurax allows Authentication Bypass.This issue affects Under Construction / Maintenance Mode from Acurax: from n/a through 2.6...

WordPress Under Construction / Maintenance Mode from Acurax Plugin <= 2.6 is vulnerable to Bypass Vulnerability

Software Under Construction / Maintenance Mode from Acurax Type Plugin Vulnerable versions = 2.6 Fixed in N/A OWASP Top 10 A4: Insecure Design Classification Bypass Vulnerability CVE CVE-2024-35749 Patch priority Low CVSS severity Low 3.7 Developer Claim ownership PSID f51ad499112f Credits Mika...

ruby:3.1 security, bug fix, and enhancement update

ruby 3.1.5-143 - Upgrade to Ruby 3.1.5. Resolves: RHEL-35748 - Fix buffer overread vulnerability in StringIO. Resolves: RHEL-35749 - Fix RCE vulnerability with .rdocoptions in RDoc. Resolves: RHEL-35750 - Fix arbitrary memory address read vulnerability with Regex search. Resolves: RHEL-35751...

CVE-2023-35749

D-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...

CVE-2023-35749 D-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...

CVE-2022-35749 Windows Digital Media Receiver Elevation of Privilege Vulnerability

...

CVE-2022-35749 Windows Digital Media Receiver Elevation of Privilege Vulnerability

...

CVE-2022-35749

Technical details about CVE-2022-35749 are not provided in the supplied documents. Available references confirm the CVE title and severity, but no affected product/version or root cause are detailed here. Monitor for official disclosures and updates.

Wordpress Simple Job Board 2.9.3 Plugin - Local File Inclusion Exploit

Exploit Title: Wordpress Plugin Simple Job Board 2.9.3 - Local File Inclusion Exploit Author: Ven3xy Vendor Homepage: https://wordpress.org/plugins/simple-job-board/ Software Link: https://downloads.wordpress.org/plugin/simple-job-board.2.9.3.zip Version: 2.9.3 Tested on: Ubuntu 20.04 LTS CVE :...

Wordpress Plugin Simple Job Board 2.9.3 - Local File Inclusion

Exploit Title: Wordpress Plugin Simple Job Board 2.9.3 - Local File Inclusion Date: 2022-02-06 Exploit Author: Ven3xy Vendor Homepage: https://wordpress.org/plugins/simple-job-board/ Software Link: https://downloads.wordpress.org/plugin/simple-job-board.2.9.3.zip Version: 2.9.3 Tested on: Ubuntu...

WordPress Simple Job Board 2.9.3 Local File Inclusion

Exploit Title: Wordpress Plugin Simple Job Board 2.9.3 - Local File Inclusion Date: 2022-02-06 Exploit Author: Ven3xy Vendor Homepage: https://wordpress.org/plugins/simple-job-board/ Software Link: https://downloads.wordpress.org/plugin/simple-job-board.2.9.3.zip Version: 2.9.3 Tested on: Ubuntu...

Simple JobBoard Authenticated File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Simple JobBoard Authenticated File Read Vulnerability', 'Description' = %q This module exploits an authenticated directory traversal vulnerabilit...

CVE-2020-35749

creationtimestamp| type| source ---|---|--- 2021-01-21 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/49450 2021-05-31 04:04:51+00:00| seen| https://t.me/pwnwikizhchannel/559 2022-02-07 20:19:03+00:00| published-proof-of-concept| https://t.me/intelexch/7752 2024-11-14...

Wordpress Plugin Simple Job Board 2.9.3 - Authenticated File Read (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Simple JobBoard Authenticated File Read Vulnerability', 'Description' = %q This module exploits an authenticated directory traversal vulnerabilit...

CVE-2020-35749

Directory traversal vulnerability in class-simplejobboardresumedownloadhandler.php in the Simple Board Job plugin 2.9.3 and earlier for WordPress allows remote attackers to read arbitrary files via the sjbfile parameter to wp-admin/post.php...

CVE-2020-35749

The CVE-2020-35749 issue affects WordPress Simple Job Board plugin versions prior to 2.9.4. It allows an authenticated user with the download_resume capability to exploit an LFI (local file inclusion) by not validating the sjb_file parameter when viewing a resume, enabling reading arbitrary serve...

CVE-2020-35749

Directory traversal vulnerability in class-simplejobboardresumedownloadhandler.php in the Simple Board Job plugin 2.9.3 and earlier for WordPress allows remote attackers to read arbitrary files via the sjbfile parameter to wp-admin/post.php...