EUVD-2025-38164

Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in NetworksController.addNetworkAction that allows an authenticated low-privileged observer user to inject SQL via datatable search parameters, leading to disclosure of database information...

CVE-2025-38164 f2fs: zone: fix to avoid inconsistence in between SIT and SSA

In the Linux kernel, the following vulnerability has been resolved: f2fs: zone: fix to avoid inconsistence in between SIT and SSA w/ below testcase, it will cause inconsistence in between SIT and SSA. createnullblk 512 2 1024 1024 mkfs.f2fs -m /dev/nullb0 mount /dev/nullb0 /mnt/f2fs/ touch...

CVE-2025-38164

In the Linux kernel, the following vulnerability has been resolved: f2fs: zone: fix to avoid inconsistence in between SIT and SSA w/ below testcase, it will cause inconsistence in between SIT and SSA. createnullblk 512 2 1024 1024 mkfs.f2fs -m /dev/nullb0 mount /dev/nullb0 /mnt/f2fs/ touch...

CVE-2021-38164

SAP ERP Financial Accounting RFOPENPOSTINGFR versions - SAPAPPL - 600, 602, 603, 604, 605, 606, 616, SAPFIN - 617, 618, 700, 720, 730, SAPSCORE - 125, S4CORE, 100, 101, 102, 103, 104, 105, allows a registered attacker to invoke certain functions that would otherwise be restricted to specific user...

CVE-2024-38164

creationtimestamp| type| source ---|---|--- 2024-07-24 00:45:42+00:00| seen| https://t.me/cvedetector/1528 2025-05-03 00:16:50+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14635...

CVE-2023-38164

creationtimestamp| type| source ---|---|--- 2023-09-12 20:29:07+00:00| seen| https://t.me/cibsecurity/70317...

CVE-2023-38164

Microsoft Dynamics 365 on-premises Cross-site Scripting Vulnerability...

CVE-2023-38164

CVE-2023-38164 is a cross-site scripting vulnerability in Microsoft Dynamics 365 (on-premises) . The NVD/CNA data indicate a network-exposed issue where the attacker can compromise browser context via XSS, with user interaction required. The impact is mainly on confidentiality (HIGH in CNA metric...

CVE-2023-38164 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

...

CVE-2022-38164

A vulnerability affecting F-Secure SAFE browser for Android and iOS was discovered. A maliciously crafted website could make a phishing attack with URL spoofing as the browser only display certain part of the entire URL...

CVE-2022-38164

CVE-2022-38164 affects the F-Secure SAFE browser for Android and iOS. The vulnerability allows a malicious website to perform a URL-spoofing phishing attack because the browser displays only a portion of the full URL, enabling misleading URLs. The connected sources do not provide concrete patch v...

CVE-2021-38164

creationtimestamp| type| source ---|---|--- 2021-09-14 16:21:59+00:00| seen| https://t.me/cibsecurity/28804...

CVE-2021-38164

CVE-2021-38164 affects SAP ERP Financial Accounting (RFOPENPOSTING_FR) across multiple SAP_APPL, SAP_FIN, SAPSCORE, and S4CORE versions. The issue allows a registered attacker to invoke functions that should be restricted to specific users, with the functions typically exposed over the network, e...