13 matches found
CVE-2023-51520
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPdevelop / Oplugins WP Booking Calendar allows Stored XSS.This issue affects WP Booking Calendar: from n/a before 9.7.4...
Directus 安全漏洞
Directus is a real-time Api and application dashboard. It is used to manage Sql database content. A security vulnerability exists in Directus versions prior to 9.7.0 that stems from the default setting of CORSORIGIN and CORSENABLED to true...
CVE-2022-25784
Cross-site Scripting XSS vulnerability in Web GUI of SiteManager allows logged-in user to inject scripting. This issue affects: Secomea SiteManager all versions prior to 9.7...
CVE-2022-25783
Insufficient Logging vulnerability in web server of Secomea GateManager allows logged in user to issue improper queries without logging. This issue affects: Secomea GateManager versions prior to 9.7...
CVE-2022-25785
Stack-based Buffer Overflow vulnerability in SiteManager allows logged-in or local user to cause arbitrary code execution. This issue affects: Secomea SiteManager all versions prior to 9.7...
CVE-2022-25787
Information Exposure Through Query Strings in GET Request vulnerability in LMM API of Secomea GateManager allows system administrator to hijack connection. This issue affects: Secomea GateManager all versions prior to 9.7...
CVE-2021-32010
Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to...
Secomea GateManager 资源管理错误漏洞
Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerabilities exist in versions prior to Secomea GateManager 9.7, which could be exploited to allow logged-in users to write text entries in the audit log...
CVE-2022-0386
A post-auth SQL injection vulnerability in the Mail Manager potentially allows an authenticated attacker to execute code in Sophos UTM before version 9.710...
Foxit Reader and PhantomPDF Resource Management Error Vulnerability (CNVD-2020-32444)
Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A buffer overflow vulnerability exists in Foxit Reader versions prior to 9.7.1 and PhantomPDF versions prior to 9.7.1. The vulnerability stems from a networked system or product that performs operations ...
Foxit Reader and PhantomPDF Resource Management Error Vulnerability (CNVD-2020-32084)
Foxit Reader and Foxit PhantomPDF are both Chinese Foxit Foxit company a PDF document reader. A security vulnerability exists in Foxit Reader versions prior to 9.7.2 and PhantomPDF versions prior to 9.7.2. The vulnerability can be exploited by an attacker to cause an application crash resource...
CVE-2017-10099
Vulnerability in the SPARC M7, T7, S7 based Servers component of Oracle Sun Systems Products Suite subcomponent: Firmware. The supported version that is affected is Prior to 9.7.6.b. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where SPARC M7,...
CVE-2017-14080
Authentication bypass vulnerability in Trend Micro Mobile Security Enterprise versions before 9.7 Patch 3 allows attackers to access a specific part of the console using a blank password...