CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

CVE-2024-28418

Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/wecmd.php...

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via the /webEdition/we_cmd.php endpoint. The issue affects the webEdition CMS component (we_cmd.php) and requires user interaction; impact is described as low for confidentiality, integrity, and availability (CVSS 3.1 base score 6.3). Some sou...

PT-2024-22422 · Unknown · Webedition Cms

Name of the Vulnerable Software and Affected Versions: Webedition CMS version 9.2.2.0 Description: The issue is a Stored XSS vulnerability. It can be exploited via the "/webEdition/we cmd.php" API endpoint. Recommendations: For Webedition CMS version 9.2.2.0, as a temporary workaround, consider...

PT-2024-22423 · Unknown · Webedition Cms

Name of the Vulnerable Software and Affected Versions: Webedition CMS version 9.2.2.0 Description: The issue is related to a File upload vulnerability. This vulnerability can be exploited via the /webEdition/we cmd.php API endpoint. Recommendations: For Webedition CMS version 9.2.2.0, as a...

CVE-2024-28418

CVE-2024-28418 affects Webedition CMS 9.2.2.0 with a file-upload vulnerability exploitable via /webEdition/we_cmd.php. The vulnerability is documented across multiple feeds; the primary technical detail is the file upload path. No explicit fix version is provided in the sources; one advisory note...

CVE-2024-28417

Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/wecmd.php...

Webedition Security Vulnerabilities

Webedition is an open source web application framework from German company Webedition. A security vulnerability exists in Webedition CMS version 9.2.2.0, which stems from /webEdition/wecmd.php allowing file uploads...

Mitel MiContact Center Business 安全漏洞

Mitel MiContact Center Business is an all-media contact center platform from Mitel. The platform is used for customer communication, production management and other scenarios. A security vulnerability exists in the Mitel MiContact Center Business server versions 9.2.2.0 to 9.4.1.0, which is cause...

JVN#49068796: Multiple MOTEX products vulnerable to privilege escalation

LanScope Cat and LanScope An provided by MOTEX Inc. contain a privilege escalation vulnerability. Impact An user who can login to the PC where the vulnerable product is installed may obtain unauthorized privileges and execute arbitrary code. Solution Update the Software Update to the latest versi...