21 matches found
CGA-6WW2-7682-R667
Bulletin has no description...
RockyLinux 10 : openexr (RLSA-2026:7682)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:7682 advisory. openexr: OpenEXR: Arbitrary code execution via integer overflow in EXR file processing CVE-2026-27622 Tenable has extracted the preceding description block...
RHSA-2026:7682 Red Hat Security Advisory: openexr security update
Bulletin has no description...
Oracle Linux 10 : openexr (ELSA-2026-7682)
The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-7682 advisory. 3.1.10-8.1 - fix CVE-2026-27622 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has no...
Ubuntu: Security Advisory (USN-7682-6)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-7682
creationtimestamp| type| source ---|---|--- 2024-08-12 15:56:10+00:00| seen| https://t.me/cvedetector/2828...
CVE-2024-7682 code-projects Job Portal rw_i_nat.php sql injection
A vulnerability was found in code-projects Job Portal 1.0. It has been rated as critical. This issue affects some unknown processing of the file rwinat.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the publ...
CVE-2024-7682
CVE-2024-7682 affects code-projects Job Portal 1.0. The vulnerability is a SQL injection in rw_i_nat.php triggered by the id parameter, potentially exploitable remotely. Public disclosures exist, but the connected documents do not specify a fixed patch version. Recommended mitigations from the so...
CVE-2020-7682
This affects all versions of package marked-tree. There is no path sanitization in the path provided at fs.readFile in index.js...
CVE-2020-7682
CVE-2020-7682 concerns all versions of the npm package marked-tree, with no path sanitization in fs.readFile called from index.js. The connected Snyk entry confirms a Directory Traversal vulnerability that can read arbitrary files outside the web root and provides a PoC demonstrating traversal vi...
CVE-2020-7682 Directory Traversal
This affects all versions of package marked-tree. There is no path sanitization in the path provided at fs.readFile in index.js...
CVE-2018-7682
Micro Focus Solutions Business Manager (SBM) prior to version 11.4 is affected by a cross-domain call vulnerability affecting SBM RESTful services. The CVE entry notes that an attacker could invoke SBM RESTful endpoints across domains, implying potential information exposure or unintended access ...
CVE-2017-7682
Summary: Apache OpenMeetings 3.2.0 is described as vulnerable to parameter manipulation attacks, enabling access to restricted areas (CVE-2017-7682). The Connected documents corroborate the same issue across multiple feeds (NVD, GHSA, OSV, CNVD, CNVD, etc.). Affected product/version: OpenMeetings...
CVE-2016-7682
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2016. Notes: none...
CVE-2016-7682
CVE-2016-7682 entry is rejected/not used and does not represent an active vulnerability.
CVE-2015-7682: Multiple Blind SQL Injections in Pie Register WordPress Plugin
Details ================ Software: Pie Register Version: 2.0.18 Homepage: https://github.com/GTSolutions/Pie-Register CVE: CVE-2015-7682 Pending CVSS: 3.5 Low; AV:N/AC:M/Au:S/C:P/I:N/A:N CWE: CWE-89 Description ================ Two blind SQL injection vulnerabilities in Pie Register 2.0.18 allow...
CVE-2015-7682
Multiple SQL injection vulnerabilities in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for WordPress allow remote administrators to execute arbitrary SQL commands via the 1 selectinvitaioncodebulkoption or 2 invidelid parameter in the pie-invitation-codes page to...
CVE-2015-7682
CVE-2015-7682 concerns the Pie Register WordPress plugin (version 2.0.18 or earlier). The connected sources confirm two blind SQL injection vulnerabilities in pie-register/pie-register.php, exploitable via POST parameters: “select_invitaion_code_bulk_option” and “invi_del_id” on the pie-invitatio...
WordPress Pie Register 2.0.18 SQL Injection
Details ================ Software: Pie Register Version: 2.0.18 Homepage: https://github.com/GTSolutions/Pie-Register CVE: CVE-2015-7682 Pending CVSS: 3.5 Low; AV:N/AC:M/Au:S/C:P/I:N/A:N CWE: CWE-89 Description ================ Two blind SQL injection vulnerabilities in Pie Register 2.0.18 allow...
CVE-2014-7682
CVE-2014-7682 concerns the GR8! TV Android app (com.magzter.greighttv), version 3.0, which does not verify X.509 certificates from SSL servers. This flaw allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Affected software is the GR8! T...