7 matches found
CVE-2024-41618
Money Manager EX WebApp web-money-manager-ex 1.2.2 is vulnerable to SQL Injection in the transactiondeletegroup function. The vulnerability is due to improper sanitization of user input in the TrDeleteArr parameter, which is directly incorporated into an SQL query...
CVE-2024-41618
creationtimestamp| type| source ---|---|--- 2024-10-25 01:12:02+00:00| seen| https://t.me/cvedetector/8873...
CVE-2023-41618
Emlog Pro v2.1.14 contains a reflected XSS vulnerability via the component /admin/article.php?active_savedraft. The issue is triggered when a crafted payload is reflected back to the user in the admin context, potentially enabling execution of arbitrary Web scripts/HTML in the user’s browser. Doc...
CVE-2022-41618
Unauthenticated Error Log Disclosure vulnerability in Media Library Assistant plugin = 3.00 on WordPress...
CVE-2022-41618 WordPress Media Library Assistant plugin <= 3.00 - Unauthenticated Error Log Disclosure vulnerability
Unauthenticated Error Log Disclosure vulnerability in Media Library Assistant plugin = 3.00 on WordPress...
CVE-2022-41618
The CVE-2022-41618 entry describes an Unauthenticated Error Log Disclosure in the WordPress Media Library Assistant plugin before or up to version 3.00. The issue arises from inadequate access controls, allowing unauthenticated users to access the plugin’s error log contents. Affected product: Wo...
CVE-2022-41618 WordPress Media Library Assistant plugin <= 3.00 - Unauthenticated Error Log Disclosure vulnerability
Unauthenticated Error Log Disclosure vulnerability in Media Library Assistant plugin = 3.00 on WordPress...