23 matches found
CVE-2025-41661
An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of Cross-Site Request Forgery CSRF protection...
CVE-2025-41661
An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of Cross-Site Request Forgery CSRF protection...
CVE-2025-41661 Weidmueller: Security routers IE-SR-2TX are affected by CSRF
An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of Cross-Site Request Forgery CSRF protection...
CVE-2025-41661 Weidmueller: Security routers IE-SR-2TX are affected by CSRF
An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of Cross-Site Request Forgery CSRF protection...
CVE-2025-41661
CVE-2025-41661 affects Weidmueller IE-SR-2TX-WL security routers. The vulnerability is a lack of CSRF protection in the main web interface, enabling an unauthenticated remote attacker to execute arbitrary commands with root privileges on affected devices. Several connected sources (Red Hat, NVD, ...
CVE-2025-41661
creationtimestamp| type| source ---|---|--- 2025-06-11 08:04:57+00:00| seen| https://infosec.exchange/users/certvde/statuses/114663692500389345 2025-06-11 08:05:02+00:00| seen| https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3lrcx4ijeuks2 2025-06-11 08:32:30+00:00| seen|...
CVE-2021-41661
Church Management System version 1.0 is affected by a SQL anjection vulnerability through creating a user with a PHP file as an avatar image, which is accessible through the /uploads directory. This can lead to RCE on the web server by uploading a PHP webshell...
CVE-2022-41661
A vulnerability has been identified in JT2Go All versions V14.1.0.4, Teamcenter Visualization V13.2 All versions V13.2.0.12, Teamcenter Visualization V13.3 All versions V13.3.0.7, Teamcenter Visualization V14.0 All versions V14.0.0.3, Teamcenter Visualization V14.1 All versions V14.1.0.4. The...
CVE-2024-41661
creationtimestamp| type| source ---|---|--- 2024-07-23 20:34:58+00:00| seen| https://t.me/cvedetector/1522...
CVE-2024-41661
Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-50094. Reason: This candidate is a duplicate of CVE-2023-50094. Notes: All CVE users should reference CVE-2023-50094 instead of this candidate...
CVE-2024-41661
...
CVE-2023-41661
creationtimestamp| type| source ---|---|--- 2023-09-29 18:37:50+00:00| seen| https://t.me/cibsecurity/71300...
CVE-2023-41661
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...
CVE-2023-41661
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...
CVE-2023-41661
CVE-2023-41661 : Authenticated (admin+) Stored Cross-Site Scripting in the Smarty for WordPress plugin (WordPress) version <= 3.1.35. The underlying issue is an XSS flaw in the plugin when an admin injects payloads that are stored and later rendered to users, enabling a stored XSS vector. Impa...
CVE-2023-41661 WordPress Smarty for WordPress Plugin <= 3.1.35 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...
WordPress Smarty for WordPress Plugin <= 3.1.35 is vulnerable to Cross Site Scripting (XSS)
Software Smarty for WordPress Type Plugin Vulnerable versions = 3.1.35 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-41661 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 3df7564a9cc9 Credits Prasanna V Balaji...
CVE-2022-41661
creationtimestamp| type| source ---|---|--- 2022-11-08 14:35:15+00:00| seen| https://t.me/cibsecurity/52626...
CVE-2022-41661
A vulnerability has been identified in JT2Go All versions V14.1.0.4, Teamcenter Visualization V13.2 All versions V13.2.0.12, Teamcenter Visualization V13.3 All versions V13.3.0.7, Teamcenter Visualization V14.0 All versions V14.0.0.3, Teamcenter Visualization V14.1 All versions V14.1.0.4. The...
CVE-2022-41661
CVE-2022-41661 affects Siemens JT2Go and Teamcenter Visualization: an out-of-bounds read when parsing CGM files could allow code execution in the current process. Affected products include JT2Go (all versions before 14.1.0.4) and Teamcenter Visualization (various lines: V13.2 before 13.2.0.12, V1...