78 matches found
MINI-9XG9-4XCX-8866
Bulletin has no description...
Linux Distros Unpatched Vulnerability : CVE-2020-8866
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This vulnerability allows remote attackers to create arbitrary files on affected installations of Horde Groupware Webmail Edition 5.2.22. Authentication is...
CGA-V848-8866-F5PX
Bulletin has no description...
CVE-2025-8866
creationtimestamp| type| source ---|---|--- 2025-08-11 18:06:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lw5f6wzkny2e...
CVE-2020-8866
This vulnerability allows remote attackers to create arbitrary files on affected installations of Horde Groupware Webmail Edition 5.2.22. Authentication is required to exploit this vulnerability. The specific flaw exists within add.php. The issue results from the lack of proper validation of...
CVE-2024-8866
creationtimestamp| type| source ---|---|--- 2024-09-15 05:04:18+00:00| seen| https://t.me/cvedetector/5678...
CVE-2024-8866
A vulnerability was found in AutoCMS 5.4. It has been classified as problematic. This affects an unknown part of the file /admin/robot.php. The manipulation of the argument sidebar leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
Debian: Security Advisory (DLA-499-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2014-8866
The compatibility mode hypercall argument translation in Xen 3.3.x through 4.4.x, when running on a 64-bit hypervisor, allows local 32-bit HVM guests to cause a denial of service host crash via vectors involving altering the high halves of registers while in 64-bit mode...
RHEL 8 : Red Hat OpenStack Platform 16.1.9 (python-XStatic-Angular) (RHSA-2022:8866)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:8866 advisory. Angular JavaScript library packaged for setuptools easyinstall / pip. Security Fixes: Prototype pollution in merge function could result in code...
SUSE: Security Advisory (SUSE-SU-2016:1310-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:1277-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:3256-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:3258-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:0022-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Horde Groupware PHP File Inclusion (CVE-2020-8866)
A file inclusion vulnerability exists in Horde Groupware. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2020-8866
This vulnerability allows remote attackers to create arbitrary files on affected installations of Horde Groupware Webmail Edition 5.2.22. Authentication is required to exploit this vulnerability. The specific flaw exists within add.php. The issue results from the lack of proper validation of...
CVE-2020-8866
CVE-2020-8866 affects Horde Groupware Webmail Edition 5.2.22, with a flaw in add.php where insufficient validation of user-supplied data allows remote attackers (authenticated) to upload arbitrary files. This can enable code execution in the www-data context when combined with other vulnerabiliti...
Fedora 30 : php-horde-Horde-Form (2020-a69f99bc67)
HordeForm 2.0.20 - mjr SECURITY: Prevent ability to specify temporary filename CVE-2020-8866, Reported By: Andrea Cardaci working with Trend Micro Zero Day Initiative. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...
Fedora 31 : php-horde-Horde-Form (2020-a55b70b4ab)
HordeForm 2.0.20 - mjr SECURITY: Prevent ability to specify temporary filename CVE-2020-8866, Reported By: Andrea Cardaci working with Trend Micro Zero Day Initiative. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...