CVE-2025-7850

creationtimestamp| type| source ---|---|--- 2025-10-21 01:33:46+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m3o6sgztpe2m 2025-10-21 01:56:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m3oa37z7l72c 2025-10-21 13:19:14+00:00| seen|...

CVE-2025-7850

A command injection vulnerability may be exploited after the admin's authentication on the web portal on Omada gateways...

CVE-2025-7850 Authenticated OS command execution

A command injection vulnerability may be exploited after the admin's authentication on the web portal on Omada gateways...

CVE-2025-7850 Authenticated OS command execution

A command injection vulnerability may be exploited after the admin's authentication on the web portal on Omada gateways...

EUVD-2020-7850

Malware in sbrugna...

ECHO-7850-E6B8-97C1

Bulletin has no description...

MAL-2025-7850 Malicious code in @erboladaiteas/accusantium-nobis-amet (npm)

The package @erboladaiteas/accusantium-nobis-amet was found to contain malicious code...

CVE-2024-7850

The BP Profile Search plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.7.5. This is due to missing or incorrect nonce validation on the bpsajaxfieldselector, bpsajaxtemplateoptions, and bpsajaxfieldrow functions. This makes it possible for...

CVE-2018-7850

A CWE-807: Reliance on Untrusted Inputs in a Security Decision vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause invalid information displayed in Unity Pro software...

Linux Distros Unpatched Vulnerability : CVE-2015-7850

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service infinite loop or crash by pointing the...

Linux Distros Unpatched Vulnerability : CVE-2014-7850

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the Web UI in FreeIPA 4.x before 4.1.2 allows remote attackers to inject arbitrary web script or HTML via vectors...

CVE-2020-7850

NBBDownloader.ocx ActiveX Control in Groupware contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the activex method. A remote attacker could induce a user to access a crafted web page, causing damage such as malicious code infection...

CVE-2024-7517 Privileged escalation via crafted use of portcfg command

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on IP extension platforms could allow a local authenticated attacker to perform a privileged escalation via crafted use of the portcfg command. This specific exploitation is only possible on IP Extensio...

CVE-2024-7517 Privileged escalation via crafted use of portcfg command

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on IP extension platforms could allow a local authenticated attacker to perform a privileged escalation via crafted use of the portcfg command. This specific exploitation is only possible on IP Extensio...

PT-2024-8869 · Brocade · Brocade X7 +6

Name of the Vulnerable Software and Affected Versions: Brocade Fabric OS versions prior to 9.2.0c Brocade Fabric OS versions 9.2.1 through 9.2.1a Description: The issue is related to a command injection vulnerability in the IPSEC component of Brocade Fabric OS, which could allow a local...

CVE-2024-7850

creationtimestamp| type| source ---|---|--- 2024-08-20 04:34:57+00:00| seen| https://t.me/cvedetector/3589...

WordPress BP Profile Search Plugin <= 5.7.5 is vulnerable to Cross Site Request Forgery (CSRF)

Software BP Profile Search Type Plugin Vulnerable versions = 5.7.5 Fixed in 5.8 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-7850 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID c231ea7c4aad Credits vgo0 Required...

Rockwell Automation Stratix Network Time Protocol Remote Configuration Denial of Service (CVE-2015-7850)

Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service DoS condition or modify the time being advertised by a device acting as a...

SUSE: Security Advisory (SUSE-SU-2016:2094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-7850

NBBDownloader.ocx ActiveX Control in Groupware contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the activex method. A remote attacker could induce a user to access a crafted web page, causing damage such as malicious code infection...