CVE-2021-36697

With an admin account, the .htaccess file in Artica Pandora FMS =755 can be overwritten with the File Manager component. The new .htaccess file contains a Rewrite Rule with a type definition. A normal PHP file can be uploaded with this new "file type" and the code can be executed with an HTTP...

CVE-2020-36697

The WP GDPR plugin for WordPress is vulnerable to authorization bypass due to a missing capability check in versions up to, and including, 2.1.1. This makes it possible for unauthenticated attackers to delete any comment and modify the plugin’s settings...

CVE-2023-36697 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

...

CVE-2023-36697 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

...

CVE-2023-36697

Technical details about CVE-2023-36697 are not publicly available in the provided documents; monitor for updates.

KB5031441: Windows Server 2008 R2 Security Update (October 2023)

The remote Windows host is missing security update 5031441. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2023-36577 - Windows IIS Server Elevation of Privilege Vulnerability CVE-2023-36434 - Microsof...

CVE-2020-36697

CVE-2020-36697 affects the WP GDPR plugin for WordPress, with vulnerability in versions up to 2.1.1 due to a missing capability check that enables authorization bypass. This allows unauthenticated attackers to delete comments and modify plugin settings. Remediation: upgrade to a version higher th...

CVE-2020-36697 WP GDPR <= 2.1.1 - Missing Authorization Checks

The WP GDPR plugin for WordPress is vulnerable to authorization bypass due to a missing capability check in versions up to, and including, 2.1.1. This makes it possible for unauthenticated attackers to delete any comment and modify the plugin’s settings...

CVE-2022-36697

Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletewaste...

CVE-2022-36697

The CVE-2022-36697 entry concerns Ingredients Stock Management System v1.0, with a SQL injection vulnerability exposed via the id parameter in /classes/Master.php?f=delete_waste. The primary sources (NVD/Red Hat and CNVD references) describe an SQLi flaw without detailing exploit scenarios or aff...

CVE-2021-36697

creationtimestamp| type| source ---|---|--- 2021-11-03 15:23:10+00:00| seen| https://t.me/cibsecurity/31718...

CVE-2021-36697

With an admin account, the .htaccess file in Artica Pandora FMS =755 can be overwritten with the File Manager component. The new .htaccess file contains a Rewrite Rule with a type definition. A normal PHP file can be uploaded with this new "file type" and the code can be executed with an HTTP...

CVE-2021-36697

CVE-2021-36697 affects Artica Pandora FMS

CVE-2012-1200

creationtimestamp| type| source ---|---|--- 2012-02-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36696 2012-02-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36699 2012-02-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36698 2012-02-11...