CVE-2020-21731

Gazie 7.29 is affected by: Cross Site Scripting XSS via http://192.168.100.7/gazie/modules/config/adminutente.php?username=amministratore&Update.; An attacker can inject JavaScript code, and the webapplication stores the injected code...

PT-2024-25299 · Ilias · Ilias

Name of the Vulnerable Software and Affected Versions: ILIAS versions 7.0 through 7.29 ILIAS versions 8.0 through 8.10 ILIAS version 9.0 Description: The issue allows remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous...

PT-2024-25296 · Ilias · Ilias

Name of the Vulnerable Software and Affected Versions: ILIAS versions 7.0.0 through 7.29 ILIAS versions 8.0.0 through 8.10 Description: A Stored Cross-site Scripting XSS issue in the "Import of user role and title of user role" feature allows remote authenticated attackers with administrative...

CVE-2022-4043 WP Custom Admin Interface < 7.29 - Admin+ PHP Object Injection

The WP Custom Admin Interface WordPress plugin before 7.29 unserialize user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...

CVE-2020-21731

Gazie 7.29 is affected by: Cross Site Scripting XSS via http://192.168.100.7/gazie/modules/config/adminutente.php?username=amministratore&Update. An attacker can inject JavaScript code, and the webapplication stores the injected code...

Cross site scripting

Gazie 7.29 is affected by: Cross Site Scripting XSS via http://192.168.100.7/gazie/modules/config/adminutente.php?username=amministratore&Update. An attacker can inject JavaScript code, and the webapplication stores the injected code...

CVE-2020-21731

Gazie 7.29 is affected by a stored Cross-Site Scripting (XSS) vulnerability. The issue occurs in the web app via the admin_utente.php?user_name=amministratore&Update parameter, where injected JavaScript code can be stored and later executed by users. This is a general XSS flaw described across mu...

CVE-2020-21731

Gazie 7.29 is affected by: Cross Site Scripting XSS via http://192.168.100.7/gazie/modules/config/adminutente.php?username=amministratore&Update. An attacker can inject JavaScript code, and the webapplication stores the injected code...

CVE-2020-11723

Cellebrite UFED 5.0 through 7.29 uses four hardcoded RSA private keys to authenticate to the ADB daemon on target devices. Extracted keys can be used to place evidence onto target devices when performing a forensic extraction...

CVE-2020-11723

CVE-2020-11723 affects Cellebrite UFED versions 5.0–7.29. The flaw stems from four hardcoded RSA private keys used to authenticate to the ADB daemon on target devices, enabling potential unauthorized placement of evidence during forensic extractions. Technical details from the Zebra family of sou...

Dual DHCP DNS Server Denial of Service Vulnerability

Dual DHCP DNS Server is a LAN software that provides both DHCP and DNS servers. A denial of service vulnerability exists in Dual DHCP DNS Server version 7.29, which can be exploited by attackers to cause a denial of service program crash...