CVE-2024-44120

creationtimestamp| type| source ---|---|--- 2024-09-10 07:32:26+00:00| seen| https://t.me/cvedetector/5168...

CVE-2024-44120 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal

SAP NetWeaver Enterprise Portal is vulnerable to reflected cross site scripting due to insufficient encoding of user-controlled input. An unauthenticated attacker could craft a malicious URL and trick a user to click it. If the victim clicks on this crafted URL before it times out, then the...

CVE-2023-44120

creationtimestamp| type| source ---|---|--- 2024-01-09 11:26:11+00:00| seen| https://t.me/ctinow/164932...

CVE-2023-44120

A vulnerability has been identified in Spectrum Power 7 All versions V23Q4. The affected product's sudo configuration permits the local administrative account to execute several entries as root user. This could allow an authenticated local attacker to inject arbitrary code and gain root access...

CVE-2023-44120

A vulnerability has been identified in Spectrum Power 7 All versions V23Q4. The affected product's sudo configuration permits the local administrative account to execute several entries as root user. This could allow an authenticated local attacker to inject arbitrary code and gain root access...

CVE-2023-44120

SIEMENS Spectrum Power 7 (all versions before V23Q4) has CVE-2023-44120: an incorrect permission assignment in the sudo configuration allows an authenticated local attacker to run entries as root, potentially injecting arbitrary code and gaining root access. Affected product: Spectrum Power 7 (SC...

Siemens Spectrum Power 7

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

Ubuntu: Security Advisory (USN-5482-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-5482-2: SPIP vulnerabilities

USN-5482-1 fixed several vulnerabilities in SPIP. This update provides the corresponding updates for Ubuntu 20.04 LTS for CVE-2021-44118, CVE-2021-44120, CVE-2021-44122 and CVE-2021-44123. Original advisory details: It was discovered that SPIP incorrectly validated inputs. An authenticated attack...

USN-5482-2 spip vulnerabilities

USN-5482-1 fixed several vulnerabilities in SPIP. This update provides the corresponding updates for Ubuntu 20.04 LTS for CVE-2021-44118, CVE-2021-44120, CVE-2021-44122 and CVE-2021-44123. Original advisory details: It was discovered that SPIP incorrectly validated inputs. An authenticated attack...

CVE-2022-44120

creationtimestamp| type| source ---|---|--- 2022-11-24 00:14:03+00:00| seen| https://t.me/cibsecurity/53458...

CVE-2022-44120

dedecmdv6 6.1.9 is vulnerable to SQL Injection. via syssqlquery.php...

CVE-2022-44120

CVE-2022-44120 affects Dedecmdv6 (DedeCMS) v6.1.9. The vulnerability is an SQL Injection in the sys_sql_query.php component. This yields potential high-impact outcomes per CVSS data (CRITICAL, Confidentiality/Integrity/Availability HIGH). The connected sources confirm the affected software/file b...

Ubuntu 18.04 LTS : SPIP vulnerabilities (USN-5482-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5482-1 advisory. It was discovered that SPIP incorrectly validated inputs. An authenticated attacker could possibly use this issue to execute arbitrary code. This issue...

USN-5482-1: SPIP vulnerabilities

It was discovered that SPIP incorrectly validated inputs. An authenticated attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 18.04 LTS. CVE-2020-28984 Charles Fol and Théo Gordyjan discovered that SPIP is vulnerable to Cross Site Scripting XSS. If a...

CVE-2021-44120

creationtimestamp| type| source ---|---|--- 2022-01-26 14:19:35+00:00| seen| https://t.me/cibsecurity/36297...

areah.com.br XSS vulnerability

Vulnerable URL: http://www.areah.com.br:80/?aspxerrorpath=/"'--; Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 44120 Google Pagerank| 6 VIP website status:| Yes Check areah.com.br...