15 matches found
CVE-2021-36538
Cross Site Scripting XSS vulnerability in Gurock TestRail before 7.1.2 allows remote authenticated attackers to run arbitrary code via the reference field in milestones or description fields in reports...
CVE-2024-36538
creationtimestamp| type| source ---|---|--- 2024-07-24 21:40:02+00:00| seen| https://t.me/cvedetector/1586...
CVE-2024-36538
Insecure permissions in chaos-mesh v2.6.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2024-36538
Insecure permissions in chaos-mesh v2.6.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token...
CVE-2023-36538
Improper access control in Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access...
CVE-2023-36538
CVE-2023-36538 affects Zoom Rooms for Windows prior to version 5.15.0, where improper access control could allow an authenticated user to escalate privileges via local access. The underlying issue is an access-control weakness, enabling high-impact outcomes (confidentiality, integrity, and availa...
CVE-2021-36538
creationtimestamp| type| source ---|---|--- 2023-02-03 20:25:48+00:00| seen| https://t.me/cibsecurity/57495 2025-03-26 16:25:08+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8878...
CVE-2021-36538
Cross Site Scripting XSS vulnerability in Gurock TestRail before 7.1.2 allows remote authenticated attackers to run arbitrary code via the reference field in milestones or description fields in reports...
CVE-2021-36538
Cross Site Scripting XSS vulnerability in Gurock TestRail before 7.1.2 allows remote authenticated attackers to run arbitrary code via the reference field in milestones or description fields in reports...
CVE-2021-36538
CVE-2021-36538 affects Gurock TestRail before 7.1.2. The vulnerability is a cross-site scripting (XSS) flaw that enables remote authenticated attackers to execute arbitrary code via the reference field in milestones or the description fields in reports. The root cause details are not fully descri...
CVE-2021-36538
Cross Site Scripting XSS vulnerability in Gurock TestRail before 7.1.2 allows remote authenticated attackers to run arbitrary code via the reference field in milestones or description fields in reports...
CVE-2020-36538
CVE-2020-36538 affects Eatan CMS. The connected sources describe a SQL injection vulnerability arising from manipulation of an unknown functionality, with remote attack capability. The CVE is labeled as critical in initial descriptions, and multiple feeds corroborate an SQL injection issue withou...
CVE-2020-36538 Eatan CMS sql injection
A vulnerability was found in Eatan CMS. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection. The attack can be launched remotely...
CVE-2025-36538
This CVE entry is rejected and not used; it does not represent an active vulnerability entry.
CVE-2025-36538
...