EUVD-2025-36550

Vulnerable Upgrade Feature Arbitrary File Write may lead to obtaining super user permissions on board.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...

MAL-2025-36550 Malicious code in test-mlw2-urges-mynah-orles-undug (npm)

The package test-mlw2-urges-mynah-orles-undug was found to contain malicious code...

CVE-2020-36550

Cross Site Scripting XSS vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Table Name field to /dashboard/table-list.php...

CVE-2024-36550

CVE-2024-36550 affects idccms V1.35 and describes a Cross-Site Request Forgery (CSRF) vulnerability accessible via /admin/vpsCompany_deal.php?mudi=add&nohrefStr=close. The NVD entry lists CVSSv3.1 scores of 8.8 (HIGH) for the NVD view with network attack vector, user interaction required, and hig...

CVE-2023-36550

A improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to execute unauthorized code or commands via specifically crafted http get request parameters...

CVE-2023-36550

A improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to execute unauthorized code or commands via specifically crafted http get request parameters...

CVE-2023-36550

CVE-2023-36550 describes an OS command injection in Fortinet FortiWLM. Affected: FortiWLM 8.6.0–8.6.5 and 8.5.0–8.5.4. Root cause: improper neutralization of special elements in os command handling, enabling an attacker to run arbitrary commands by sending specially crafted HTTP GET parameters. I...

CVE-2020-36550

creationtimestamp| type| source ---|---|--- 2022-07-15 16:35:20+00:00| seen| https://t.me/cibsecurity/46302...

CVE-2020-36550

CVE-2020-36550 affects SourceCodester Multi Restaurant Table Reservation System 1.0. A cross-site scripting (XSS) vulnerability exists in the Table Name field processed by /dashboard/table-list.php, allowing injected scripts to be executed in the context of the web app. The issue is documented ac...

CVE-2020-36550

Cross Site Scripting XSS vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Table Name field to /dashboard/table-list.php...

CVE-2021-36550

CVE-2021-36550 affects TikiWiki v21.4 and stems from a cross-site scripting (XSS) flaw in the tiki-browse_categories.php component. The issue enables an attacker to run arbitrary web scripts or HTML via a crafted payload in the Create category module. The reports cite an XSS susceptibility but do...

36550.ru XSS vulnerability

Open Bug Bounty ID: OBB-652530 Description| Value ---|--- Affected Website:| 36550.ru Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

36550.ru Open Redirect vulnerability

Vulnerable URL: https://36550.ru/redirect?url=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 20.12.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 4550995 VIP website status:| No Coordinated...

HP LoadRunner XUpload ActiveX control MakeHttpRequest file download

Added: 10/21/2009 CVE: CVE-2009-3693 BID: 36550 Background HP LoadRunner is a software performance testing solution. HP LoadRunner includes the XUpload.ocx ActiveX control for performing file exchanges. Problem The MakeHttpRequest method in the XUpload.ocx ActiveX control can be used to download...

HP LoadRunner XUpload ActiveX control MakeHttpRequest file download

Added: 10/21/2009 CVE: CVE-2009-3693 BID: 36550 Background HP LoadRunner is a software performance testing solution. HP LoadRunner includes the XUpload.ocx ActiveX control for performing file exchanges. Problem The MakeHttpRequest method in the XUpload.ocx ActiveX control can be used to download...

CVE-2024-36550

idccms V1.35 was discovered to contain a Cross-Site Request Forgery CSRF via /admin/vpsCompanydeal.php?mudi=add&nohrefStr=close...