1060746 matches found
MINI-4P63-6747-F6G3
Bulletin has no description...
MINI-XCCR-76M4-R2PW
Bulletin has no description...
MINI-5XH8-2XGR-QRF2
Bulletin has no description...
MINI-GQHX-XJM9-79QF
Bulletin has no description...
MINI-MQ5R-HF7R-M4W3
Bulletin has no description...
MINI-QG7W-64CC-RJV9
Bulletin has no description...
MINI-M2VG-H5M9-CRPX
Bulletin has no description...
MINI-59G8-R34C-CCPW
Bulletin has no description...
MINI-RM6V-R4W8-C5WF
Bulletin has no description...
MINI-X7V8-J3WH-9H9M
Bulletin has no description...
MINI-4WV7-68QV-HJFJ
Bulletin has no description...
MINI-XP78-8HVV-35PQ
Bulletin has no description...
MINI-4H8H-6MHW-PC24
Bulletin has no description...
MINI-HXJV-5V38-M2C2
Bulletin has no description...
SawtoothSoftware Lighthouse Studio < 9.16.14 - Pre-Auth Remote Code Execution
A pre-authentication remote code execution vulnerability exists in Sawtooth Software’s Lighthouse Studio versions prior to 9.16.14. The issue arises from the unsafe use of the eval function within the Perl CGI component ciwweb.pl, where attacker-supplied input inside hidRandomACARAT is directly...
DedeCMS 5.7SP2 - Cross-Site Request Forgery/Remote Code Execution
DedeCMS 5.7SP2 is susceptible to cross-site request forgery with a corresponding impact of arbitrary code execution because the partcode parameter in a tagtestaction.php request can specify a runphp field in conjunction with PHP code. id: CVE-2018-7700 info: name: DedeCMS 5.7SP2 - Cross-Site...
Artica Web Proxy 4.30 - OS Command Injection
Artica Web Proxy 4.30 allows an authenticated remote attacker to inject commands via the service-cmds parameter in cyrus.php. These commands are executed with root privileges via servicecmdspeform. id: CVE-2020-17505 info: name: Artica Web Proxy 4.30 - OS Command Injection author: dwisiswant0...
JetBrains TeamCity > 2023.11.3 - Authentication Bypass
In JetBrains TeamCity before 2023.11.3 authentication bypass leading to RCE was possible id: CVE-2024-23917 info: name: JetBrains TeamCity 2023.11.3 - Authentication Bypass author: iamnoooob,rootxharsh,pdresearch severity: critical description: | In JetBrains TeamCity before 2023.11.3...
Hunk Companion <= 1.8.4 - Arbitrary Plugin Installation
The Hunk Companion plugin for WordPress is vulnerable to unauthorized plugin installation/activation due to a missing capability check on the /wp-json/hc/v1/themehunk-import REST API endpoint in all versions up to, and including, 1.8.4. This makes it possible for unauthenticated attackers to...
Joomla! Component NoticeBoard 1.3 - Local File Inclusion
A directory traversal vulnerability in the Code-Garage NoticeBoard comnoticeboard component 1.3 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impacts via a .. dot dot in the controller parameter to index.php. id: CVE-2010-1658 info: name: Joomla!...