CVE-2025-36745

creationtimestamp| type| source ---|---|--- 2025-12-12 16:10:25+00:00| seen| https://gist.github.com/Darkcrai86/88c704c23fac52fefc5b106e50aeda6d 2025-12-12 16:58:14+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115707654519020548 2025-12-12 17:06:21+00:00| seen|...

MAL-2025-36745 Malicious code in testtest--testq (npm)

The package testtest--testq was found to contain malicious code...

CVE-2020-36745

The WP Project Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.4.0. This is due to missing or incorrect nonce validation on the doupdates function. This makes it possible for unauthenticated attackers to trigger updates via a forged...

CVE-2024-36745

CVE-2024-36745 affects OneFlow-Inc Oneflow v0.9.1. The issue allows an attacker to cause a Denial of Service by inputting a negative value into the oneflow.index_select parameter. CVSSv3.1 base score 7.5 (HIGH); attack vector NETWORK, no privileges required, user interaction NONE. Multiple source...

CVE-2024-36745

An issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service DoS via inputting a negative value into the oneflow.indexselect parameter...

VulnCheck KEV: CVE-2023-36745

Microsoft Exchange Server Remote Code Execution Vulnerability...

CVE-2023-36745

Microsoft Exchange Server Remote Code Execution Vulnerability...

CVE-2023-36745

CVE-2023-36745 is a Microsoft Exchange Server Remote Code Execution vulnerability. Connected sources provide concrete exploit details: a GitHub repo labeled as a CVE-2023-36745 exploit (Deserialization of Untrusted Data in Microsoft), with a PoC and example commands to trigger RCE (PowerShell/DLL...

CVE-2023-36745 Microsoft Exchange Server Remote Code Execution Vulnerability

...

CVE-2023-36745 Microsoft Exchange Server Remote Code Execution Vulnerability

...

Security Updates for Microsoft Exchange Server (September 2023)

The Microsoft Exchange Server installed on the remote host is missing a security update. It is, therefore, affected by multiple vulnerabilities as referenced in the Sep, 2023 security bulletin. - Microsoft Exchange Server Spoofing Vulnerability CVE-2023-36757 - Microsoft Exchange Server Remote Co...

CVE-2020-36745 WP Project Manager <= 2.4.0 - Cross-Site Request Forgery Bypass

The WP Project Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.4.0. This is due to missing or incorrect nonce validation on the doupdates function. This makes it possible for unauthenticated attackers to trigger updates via a forged...

CVE-2020-36745

The CVE concerns the WP Project Manager WordPress plugin, affected versions up to and including 2.4.0. The root cause is missing or incorrect nonce validation in the do_updates() function, facilitating Cross-Site Request Forgery. This allows unauthenticated attackers to trigger updates by deliver...

CVE-2022-36745

creationtimestamp| type| source ---|---|--- 2022-08-31 02:36:02+00:00| seen| https://t.me/cibsecurity/49086...

CVE-2022-36745

LibreNMS v22.6.0 was discovered to contain a cross-site scripting XSS vulnerability via the component print-customoid.php...

CVE-2022-36745

LibreNMS v22.6.0 was discovered to contain a cross-site scripting XSS vulnerability via the component print-customoid.php...

CVE-2022-36745

CVE-2022-36745 affects LibreNMS v22.6.0, with a cross-site scripting (XSS) vulnerability in the component print-customoid.php. The root cause is an XSS flaw in that PHP component, enabling user-initiated script execution under certain conditions. Documents consistently describe the issue as a vul...

CVE-2022-36745

LibreNMS v22.6.0 was discovered to contain a cross-site scripting XSS vulnerability via the component print-customoid.php...

Trend Micro ServerProtect Authentication Bypass Vulnerability (CVE-2021-36745)

Binary data trendmicroserverprotectcve-2021-36745.nbin...

CVE-2021-36745

Trend Micro ServerProtect family (Storage 6.0; EMC Celerra 5.8; Network Appliance Filers 5.8; Windows/Netware 5.8) contains an authentication bypass vulnerability in the ServerProtect console that could allow a remote attacker to bypass authentication. Affects multiple platforms; CVSS reported as...