EUVD-2020-24072

Malware in sbrugna...

CVE-2025-3581 Newsletter < 8.8.5 - Admin+ Stored XSS via Widget

The Newsletter WordPress plugin before 8.8.5 does not validate and escape some of its Widget options before outputting them back in a page/post where the block is embed, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtm...

CVE-2023-34142

Cleartext Transmission of Sensitive Information vulnerability in Hitachi Device Manager on Windows, Linux Device Manager Server, Device Manager Agent, Host Data Collector components allows Interception.This issue affects Hitachi Device Manager: before 8.8.5-02...

CVE-2023-34143

Improper Validation of Certificate with Host Mismatch vulnerability in Hitachi Device Manager on Windows, Linux Device Manager Server, Device Manager Agent, Host Data Collector components allows Man in the Middle Attack.This issue affects Hitachi Device Manager: before 8.8.5-02...

CVE-2020-36611

Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Linux Hitachi Tuning Manager server, Hitachi Tuning Manager - Agent for RAID, Hitachi Tuning Manager - Agent for NAS, Hitachi Tuning Manager - Agent for SAN Switch components allows local users to read and write specific...

CVE-2024-1474

In WSFTP Server versions before 8.8.5, reflected cross-site scripting issues have been identified on various user supplied inputs on the WSFTP Server administrative interface...

PT-2024-27454 · Unknown · Woocommerce +1

Name of the Vulnerable Software and Affected Versions: WooCommerce versions 8.8 through 8.8.4 WooCommerce versions 8.9 through 8.9.2 Description: A cross-site scripting vulnerability in WooCommerce allows a bad actor to manipulate a link to include malicious HTML and JavaScript content. The...

CVE-2024-1474

In WSFTP Server versions before 8.8.5, reflected cross-site scripting issues have been identified on various user supplied inputs on the WSFTP Server administrative interface...

Cross site scripting

In WSFTP Server versions before 8.8.5, reflected cross-site scripting issues have been identified on various user supplied inputs on the WSFTP Server administrative interface...

Progress Software WS_FTP Server Security Vulnerability

Progress Software WSFTP Server is an effective and highly manageable FTP server from Progress Software, USA. A security vulnerability exists in Progress Software WSFTP Server versions prior to 8.8.5 that stems from the presence of a cross-site scripting vulnerability...

CVE-2023-6457

Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows Hitachi Tuning Manager server component allows local users to read and write specific files.This issue affects Hitachi Tuning Manager: before 8.8.5-04...

CVE-2023-49107

Generation of Error Message Containing Sensitive Information vulnerability in Hitachi Device Manager on Windows, Linux Device Manager Agent modules.This issue affects Hitachi Device Manager: before 8.8.5-04...

Design/Logic Flaw

Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows Hitachi Tuning Manager server component allows local users to read and write specific files.This issue affects Hitachi Tuning Manager: before 8.8.5-04...

Design/Logic Flaw

Generation of Error Message Containing Sensitive Information vulnerability in Hitachi Device Manager on Windows, Linux Device Manager Agent modules.This issue affects Hitachi Device Manager: before 8.8.5-04...

CVE-2023-6457 File and Directory Permission Vulnerability in Hitachi Tuning Manager

Incorrect Default Permissions vulnerability in Hitachi Tuning Manager on Windows Hitachi Tuning Manager server component allows local users to read and write specific files.This issue affects Hitachi Tuning Manager: before 8.8.5-04...

Hitachi Tuning Manager Security Vulnerability

Hitachi Tuning Manager is a performance tuning and monitoring tool provided by Hitachi, Japan. A security vulnerability exists in Hitachi Tuning Manager versions prior to 8.8.5-04, which stems from incorrect default permissions that allow local users to read and write specific files...

Hitachi Device Manager Security Vulnerability

Hitachi Device Manager is a device management software from Hitachi, Japan. It is a solution for centralized management and monitoring of storage devices, designed to help users simplify storage resource management, optimize storage performance, and improve the reliability and availability of...

Hitachi Device Manager Security Vulnerability

Hitachi Device Manager is a device management software from Hitachi, Japan. It is a solution for centralized management and monitoring of storage devices, designed to help users simplify storage resource management, optimize storage performance, and improve the reliability and availability of...

PT-2024-1268 · Hitachi · Hitachi Device Manager

Name of the Vulnerable Software and Affected Versions: Hitachi Device Manager versions prior to 8.8.5-04 Description: The issue is related to the generation of error messages containing sensitive information in the Hitachi Device Manager, specifically affecting the Device Manager Agent modules on...

PT-2024-1273 · Hitachi · Hitachi Tuning Manager

Name of the Vulnerable Software and Affected Versions: Hitachi Tuning Manager versions prior to 8.8.5-04 Description: The issue is related to incorrect default permissions in the Hitachi Tuning Manager server component on Windows, allowing local users to read and write specific files. This can be...