64 matches found
CVE-2023-4546
creationtimestamp| type| source ---|---|--- 2023-08-26 12:14:47+00:00| seen| https://t.me/cibsecurity/69239...
CVE-2023-4546 Byzoro Smart S85F Management Platform licence.php access control
A vulnerability was found in Byzoro Smart S85F Management Platform up to 20230816. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /sysmanage/licence.php. The manipulation leads to improper access controls. The exploit has been disclosed...
CVE-2023-4546
CVE-2023-4546 affects Byzoro/Beijing Baichuo Smart S85F Management Platform up to version 20230816. The vulnerability concerns an unknown functionality in the file /sysmanage/licence.php, where manipulation leads to improper access controls. Exploitation has been disclosed publicly and may be use...
SUSE CVE-2008-4546
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows remote web servers to cause a denial of service NULL pointer dereference and browser crash by returning a different response when an HTTP request is sent a second time, as demonstrated by two...
CVE-2022-4546
The Mapwiz WordPress plugin through 1.0.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...
CVE-2022-4546
Mapwiz WordPress plugin (<= 1.0.1) is affected by a SQL injection due to improper sanitisation/escaping of input before SQL construction. Exploitation is described as possible by high-privilege users (e.g., admin) and is supported by multiple sources (NVD/Red Hat/CVE listing) noting an Admin+ ...
WordPress Mapwiz Plugin <= 1.0.1 is vulnerable to SQL Injection
Software Mapwiz Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2022-4546 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 5aebce0acd8a Credits Daniel Krohmer Required privilege Administrator Published 19...
GitLab Community Edition 4.2.x - 5.4.0, 6.x - 6.2.2 Multiple Vulnerabilities
GitLab is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if description...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Firefox regressions (USN-4546-2)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4546-2 advisory. USN-4546-1 fixed vulnerabilities in Firefox. The update introduced various minor regressions. This update fixes the problem. We apologize...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Firefox vulnerabilities (USN-4546-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4546-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacke...
Security Bulletin: Multiple vulnerabilities affects IBM Jazz Foundation and IBM Engineering products.
Summary There are multiple vulnerabilities that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management ELM, IBM Engineering Requirements Management DOORS Next DOORS Next, IBM Engineering Lifecycle Optimization - Engineeri...
CVE-2019-4546
After installing the IBM Maximo Health- Safety and Environment Manager 7.6.1, a user is granted additional privileges that they are not normally allowed to access. IBM X-Force ID: 165948...
Security Bulletin: IBM Maximo Health, Safety, and Environment Manager Installation Gives Application Access to Non-Authorized Users (CVE-2019-4546)
Summary After installing the Health, Safety, and Environmental add-on to IBM Maximo Asset Management, a user is granted additional privileges that they are not normally allowed to access. Vulnerability Details CVEID: CVE-2019-4546 DESCRIPTION: After installing the Health, Safety, and Environmenta...
Debian DSA-4546-1 : openjdk-11 - security update
Several vulnerabilities have been discovered in the OpenJDK Java runtime, resulting in cross-site scripting, denial of service, information disclosure or Kerberos user impersonation. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...
Multiple IBM Products CVE-2019-4546 Unauthorized Access Vulnerability
Description Multiple IBM Products are prone to an unauthorized-access vulnerability Attackers can exploit this issue to gain unauthorized access and perform unauthorized actions. This may aid in further attacks. Technologies Affected IBM Maximo Asset Management IBM Maximo Health Safety and...
CVE-2017-4546
CVE-2017-4546 entry is rejected/not used per the initial description.
CVE-2017-4546
...
CVE-2016-4546
CVE-2016-4546 affects Samsung devices running Android KitKat 4.4 or Lollipop 5.0/5.1. The issue allows local attackers to cause a denial of service by sending crafted data to a service call that crashes IAndroidShm. Exploitation details are not provided in the available documents, and no remediat...
ESA-2015-151: RSA® OneStep Path Traversal Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-151: RSA® OneStep Path Traversal Vulnerability EMC Identifier: ESA-2015-151 CVE Identifier: CVE-2015-4546 Severity Rating: CVSS v2 Base Score: 7.8 AV:N/AC:L/Au:N/C:C/I:N/A:N Affected Products: RSA OneStep 6.9 prior to Build 559 RSA OneStep...
CVE-2015-4546
EMC RSA OneStep 6.9 prior to Build 559 contains a path traversal vulnerability exploitable by a remote unauthenticated attacker via the KCSOSC_ERROR_PAGE parameter, potentially allowing reading of arbitrary files outside the installation directory. This affects RSA OneStep components used in RSA ...