63 matches found
CVE-2026-8734
A vulnerability was determined in Oinone Pamirs up to 7.2.0. Affected by this issue is the function RSQLToSQLNodeConnector.makeVariable of the component queryListByWrapper Interface. This manipulation causes sql injection. The attack can be initiated remotely. The exploit has been publicly...
EUVD-2016-8734
Malware in sbrugna...
CVE-2025-8734
creationtimestamp| type| source ---|---|--- 2025-08-08 20:07:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lvw2jdo6ii2s 2025-10-27 21:18:13+00:00| seen| https://seclists.org/oss-sec/2025/q4/83...
DEBIAN-CVE-2025-8734
Bulletin has no description...
CVE-2025-8734
...
CVE-2025-8734
Last updated 28 August 2025...
CVE-2020-8734
Improper input validation in the firmware for IntelR Server Board M10JNP2SB before version 7.210 may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2019-8734
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13, iCloud for Windows 7.14, iCloud for Windows 10.7, Safari 13, tvOS 13, watchOS 6, iTunes 12.10.1 for Windows. Processing maliciously crafted web content may lead to arbitrary code executi...
Linux Distros Unpatched Vulnerability : CVE-2016-8734
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Subversion's moddontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by...
CVE-2024-8734
The Lucas String Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.0.5. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in...
CVE-2024-8734 Lucas String Replace <= 2.0.5 - Reflected Cross-Site Scripting
The Lucas String Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.0.5. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in...
CVE-2024-8734 Lucas String Replace <= 2.0.5 - Reflected Cross-Site Scripting
The Lucas String Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.0.5. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in...
WordPress Lucas String Replace Plugin <= 2.0.5 is vulnerable to Cross Site Scripting (XSS)
Software Lucas String Replace Type Plugin Vulnerable versions = 2.0.5 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8734 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d57e73116724 Credits vgo0 Required...
WordPress REST API Content Injection
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress REST API Content Injection', 'Description' = %q This module exploits a content injection vulnerability in WordPress versions 4.7 and...
CGA-8734-CM7P-72PV
Bulletin has no description...
RHEL 7 : subversion (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - subversion: svnserve/sasl may authenticate users using the wrong realm CVE-2016-2167 - The reqcheckaccess...
CVE-2020-8734
creationtimestamp| type| source ---|---|--- 2021-02-03 00:55:44+00:00| seen| https://t.me/cibsecurity/22977...
CVE-2020-8734
Improper input validation in the firmware for IntelR Server Board M10JNP2SB before version 7.210 may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2020-8734
The Intel Server Board M10JNP2SB firmware prior to 7.210 contains two privilege-escalation issues (CVE-2020-8733 and CVE-2020-8734). Both require local access and involve the firmware: CVE-2020-8733 improper buffer restrictions, and CVE-2020-8734 improper input validation, potentially allowing a ...
CVE-2019-8734
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13, iCloud for Windows 7.14, iCloud for Windows 10.7, Safari 13, tvOS 13, watchOS 6, iTunes 12.10.1 for Windows. Processing maliciously crafted web content may lead to arbitrary code executi...