CVE-2023-40747

Directory traversal vulnerability exists in A.K.I Software's PMailServer/PMailServer2 products' CGIs included in Internal Simple Webserver. If this vulnerability is exploited, a remote attacker may access arbitrary files outside DocumentRoot...

EUVD-2024-40747

Malicious code in bioql PyPI...

MAL-2025-40747 Malicious code in zangoose (npm)

The package zangoose was found to contain malicious code...

CVE-2024-40747

Various module chromes didn't properly process inputs, leading to XSS vectors...

CVE-2022-40747

"IBM InfoSphere Information Server 11.7 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 236584."...

CVE-2024-40747

Various module chromes didn't properly process inputs, leading to XSS vectors...

CVE-2024-40747

creationtimestamp| type| source ---|---|--- 2025-01-07 16:27:14+00:00| seen| https://infosec.exchange/users/cve/statuses/113788009448134261 2025-01-07 17:15:56+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf65mye7dj2o 2025-01-07 17:48:50+00:00| seen|...

CVE-2024-40747 [20250101] - Core - XSS vectors in module chromes

Various module chromes didn't properly process inputs, leading to XSS vectors...

CVE-2024-40747

CVE-2024-40747 affects Joomla! core module chromes, where inputs are not properly processed, enabling cross-site scripting (XSS). The vulnerability is described across multiple feeds as applying to module chromes and is categorized with CVSS 3.1: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N, base score 6....

Adobe Illustrator < 25.4.2 Multiple Vulnerabilities (APSB21-98) (macOS)

The version of Adobe Illustrator installed on the remote macOS host is prior to 25.4.2. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-98 advisory. - Out-of-bounds Read CWE-125 potentially leading to Memory Leak CVE-2021-40718 - Out-of-bounds Read CWE-125...

CVE-2023-40747

creationtimestamp| type| source ---|---|--- 2024-03-18 02:21:51+00:00| seen| https://t.me/ctinow/210112 2024-03-18 02:26:49+00:00| seen| https://t.me/ctinow/210119...

CVE-2023-40747

CVE-2023-40747 affects A.K.I Software PMailServer/PMailServer2 CGIs within the Internal Simple Webserver. The vulnerability is a directory traversal that could allow a remote attacker to access arbitrary files outside the DocumentRoot. Affected CGIs include pmc.exe, and the vulnerability is assoc...

CVE-2023-40747

Directory traversal vulnerability exists in A.K.I Software's PMailServer/PMailServer2 products' CGIs included in Internal Simple Webserver. If this vulnerability is exploited, a remote attacker may access arbitrary files outside DocumentRoot...

JVN#92720882: Multiple vulnerabilities in CGIs of PMailServer and PMailServer2

CGIs included with PMailServer and PMailServer2 provided by A.K.I Software contain multiple vulnerabilities listed below. Stored cross-site scripting vulnerability CWE-79 - CVE-2023-39223 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N| Base Score: 5.4 CVS...

Security Bulletin: IBM InfoSphere Information Server is vulnerable to an XML External Entity Injection (CVE-2022-40747)

Summary IBM InfoSphere Information Server is vulnerable to an XML External Entity Injection XXE Vulnerability Details CVEID:CVE-2022-40747 DESCRIPTION: IBM InfoSphere Information Server 11.7 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker...

Magento cross-site scripting vulnerability (CNVD-2019-40747)

Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions . Magento has a cross-site scripting vulnerability. Attackers can use this vulnerability to execute client-side co...