7 matches found
CVE-2026-41448
AdGuard Home, when started with the --glinet flag, contains an authentication bypass vulnerability that allows unauthenticated attackers to gain full admin access by supplying a path traversal sequence in the Admin-Token cookie, exploiting unsanitized string concatenation in the token file path...
CVE-2026-41448
creationtimestamp| type| source ---|---|--- 2026-06-03 23:00:01+00:00| seen| https://bsky.app/profile/dbt3.ch/post/3mng7lmfcsm2y 2026-06-08 18:39:06+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116715933567377709...
CVE-2023-41448
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the ID parameter in the index.php component...
CVE-2023-41448
Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the ID parameter in the index.php component...
CVE-2023-41448
CVE-2023-41448 concerns phpkobo AjaxNewTicker v1.0.5. The vulnerability lies in the index.php component, where the ID parameter can be crafted to trigger a cross-site scripting (XSS) flaw. This XSS could allow a remote attacker to execute arbitrary code (as stated in the sources) by supplying a m...
CVE-2021-41448
CVE-2021-41448 is rejected/not used per the initial description and does not represent an active vulnerability.
CVE-2021-41448
...