67 matches found
ECHO-EBFF-11FA-7124
Bulletin has no description...
CVE-2026-7124
A vulnerability was determined in Totolink A8000RU 7.1cu.643b20200521. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument addrPrefixLen can lead to os command injection. The attack ca...
MAL-2025-7124 Malicious code in @citi-gcg-167407/core-services (npm)
The package @citi-gcg-167407/core-services was found to contain malicious code...
CVE-2024-7124
Improper Neutralization of Input During Web Page Generation vulnerability in DInGO dLibra software in the parameter 'filter' in the endpoint 'indexsearch' allows a Reflected Cross-Site Scripting XSS. An attacker might trick somebody into using a crafted URL, which will cause a script to be run in...
Linux Distros Unpatched Vulnerability : CVE-2016-7124
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ext/standard/varunserializer.c in PHP before 5.6.25 and 7.x before 7.0.10 mishandles certain invalid objects, which allows remote attackers to cause a denial of...
CVE-2024-7124
Improper Neutralization of Input During Web Page Generation vulnerability in DInGO dLibra software in the parameter 'filter' in the endpoint 'indexsearch' allows a Reflected Cross-Site Scripting XSS. An attacker might trick somebody into using a crafted URL, which will cause a script to be run in...
CVE-2024-7124 Reflected XSS in DInGO dLibra
Improper Neutralization of Input During Web Page Generation vulnerability in DInGO dLibra software in the parameter 'filter' in the endpoint 'indexsearch' allows a Reflected Cross-Site Scripting XSS. An attacker might trick somebody into using a crafted URL, which will cause a script to be run in...
CVE-2024-7124 Reflected XSS in DInGO dLibra
Improper Neutralization of Input During Web Page Generation vulnerability in DInGO dLibra software in the parameter 'filter' in the endpoint 'indexsearch' allows a Reflected Cross-Site Scripting XSS. An attacker might trick somebody into using a crafted URL, which will cause a script to be run in...
CVE-2024-7124
CVE-2024-7124 affects DInGO dLibra software (versions 6.0–6.3.19). The vulnerability is a Reflected Cross-Site Scripting (XSS) in the indexsearch endpoint’s filter parameter, caused by improper neutralization of input during web page generation. Exploitation would require a user to click a crafte...
CVE-2023-7124
creationtimestamp| type| source ---|---|--- 2023-12-28 04:26:29+00:00| seen| https://t.me/ctinow/159916 2024-01-04 21:21:58+00:00| seen| https://t.me/ctinow/163225 2024-01-19 16:11:58+00:00| seen| https://t.me/ctinow/170257...
CVE-2023-7124
CVE-2023-7124 affects code-projects E-Commerce Site 1.0. the vulnerability is in an unknown function of search.php, where the keyword parameter can be crafted as to trigger a cross-site scripting (XSS). The issue is exploitable remotely and the exploit has been disclosed publicly. Connected sour...
SUSE: Security Advisory (SUSE-SU-2016:2460-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:2408-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:2460-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:2459-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:2328-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-7124
A remote unauthorized access vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
CVE-2020-7124
CVE-2020-7124 corresponds to a remote unauthorized access vulnerability in Aruba Airwave Software prior to version 1.3.2. Multiple connected sources (Red Hat, CNVD, NVD, CVE lists) consistently describe an uncontrolled remote access issue affecting Aruba Airwave; the core product is Aruba Airwave...
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-2221)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-7124
A remote code execution vulnerability was identified in HPE Intelligent Management Center IMC PLAT earlier than version 7.3 E0506P09...