Slims9 Bulian 9.4.2 - SQL Injection

Slims9 Bulian 9.4.2 is affected by SQL injection in lib/comment.inc.php. User data can be obtained. id: CVE-2021-45793 info: name: Slims9 Bulian 9.4.2 - SQL Injection author: nblirwn severity: high description: | Slims9 Bulian 9.4.2 is affected by SQL injection in lib/comment.inc.php. User data c...

Medium: composer

Issue Overview: Github Actions issued GITHUBTOKEN disclosure in GitHub Actions logs CVE-2026-45793 Affected Packages: composer Issue Correction: Run dnf update composer --releasever 2023.12.20260608 or dnf update --advisory ALAS2023-2026-1800 --releasever 2023.12.20260608 to update your system...

Linux Distros Unpatched Vulnerability : CVE-2026-45793

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - Github Actions issued GITHUBTOKEN disclosure in GitHub Actions logs CVE-2026-45793 Note that Nessus relies on the presence of the package as...

CVE-2026-45793

Github Actions issued GITHUBTOKEN disclosure in GitHub Actions logs...

CVE-2026-45793

creationtimestamp| type| source ---|---|--- 2026-05-14 04:49:16+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mlrzbutgu22x 2026-05-15 00:05:07+00:00| seen| https://bsky.app/profile/nixpkgs-prs-bot.bsky.social/post/3mltzvmkhy42b 2026-05-15 06:40:24+00:00| seen|...

CVE-2026-45793

Github Actions issued GITHUBTOKEN disclosure in GitHub Actions logs...

CVE-2022-45793

Sysmac Studio installs executables in a directory with poor permissions. This can allow a locally-authenticated attacker to overwrite files which will result in code execution with privileges of a different user...

CVE-2024-45793 Cross-site Scripting from in Confidant API call

Confidant is a open source secret management service that provides user-friendly storage and access to secrets. The following endpoints are subject to a cross site scripting vulnerability: GET /v1/credentials, GET /v1/credentials/, GET /v1/archive/credentials/, GET /v1/archive/credentials, POST...

CVE-2024-45793 Cross-site Scripting from in Confidant API call

Confidant is a open source secret management service that provides user-friendly storage and access to secrets. The following endpoints are subject to a cross site scripting vulnerability: GET /v1/credentials, GET /v1/credentials/, GET /v1/archive/credentials/, GET /v1/archive/credentials, POST...

CVE-2023-45793

creationtimestamp| type| source ---|---|--- 2024-03-12 12:26:22+00:00| seen| https://t.me/ctinow/205592 2024-03-12 12:32:18+00:00| seen| https://t.me/ctinow/205605...

CVE-2023-45793

CVE-2023-45793 : Affected product is Siemens Siveillance Control (versions 2.8 up to 3.1.1). The issue is an authorization check failure related to the list of access groups assigned to a user, allowing a locally logged-on user to gain write privileges to objects they should only read. The vulner...

CVE-2022-45793

Omron Sysmac Studio is affected (Sysmac Studio: version 1.54 and earlier). The vulnerability stems from executables being installed in a directory with write permissions for low-privileged users, enabling a locally authenticated attacker to overwrite files and potentially execute code with the pr...

CVE-2022-45793 Executable files writable by low-privileged users in Omron Sysmac Studio

Sysmac Studio installs executables in a directory with poor permissions. This can allow a locally-authenticated attacker to overwrite files which will result in code execution with privileges of a different user...

CVE-2022-45793 Executable files writable by low-privileged users in Omron Sysmac Studio

Sysmac Studio installs executables in a directory with poor permissions. This can allow a locally-authenticated attacker to overwrite files which will result in code execution with privileges of a different user...

Omron Engineering Software

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION : Low attack complexity Vendor : Omron Equipment : Sysmac Studio Vulnerability : Improper Authorization 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code. 3. TECHNICAL DETAILS...

CVE-2021-45793

creationtimestamp| type| source ---|---|--- 2022-03-17 15:21:41+00:00| seen| https://t.me/cibsecurity/39139 2025-02-01 05:37:50+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-45793.yaml 2025-02-03 21:01:56+00:00| seen|...

CVE-2021-45793

Slims9 Bulian 9.4.2 is affected by SQL injection in lib/comment.inc.php. User data can be obtained...

CVE-2021-45793

CVE-2021-45793 (Slims9 Bulian 9.4.2) is due to a SQL injection in lib/comment.inc.php. The NVD/Nuclei entries describe an SQLi that can lead to retrieving user data from the database; the Circl/RedHat entries corroborate affected software. The referenced exploit path is via the comment field, ena...