2125 matches found
The vulnerability of the control panel of the microprogrammed software for DVR devices TBK DVR4104 and TBK DVR4216 allows intruders to bypass security restrictions and gain unauthorized access to protected information.
The vulnerability of the control panel of the microprogrammed software for TBK DVR devices, TBK DVR4104 and TBK DVR4216, lies in the lack of measures to neutralize special elements during the processing of the Cookie header: uid=admin. Exploiting this vulnerability allows a remote attacker to...
CVE-2023-28467
In MyBB before 1.8.34, there is XSS in the User CP module via the user email field...
CVE-2023-28467
In MyBB before 1.8.34, there is XSS in the User CP module via the user email field...
MyBB 跨站脚本漏洞
MyBB MyBulletinBoard is a free and web-based forum software developed by MYBB team using PHP and MySQL. The software is easy to use, supports multiple languages, scalable and other features. A security vulnerability exists in MyBB versions prior to 1.8.34, which stems from a cross-site scripting...
PT-2023-21737 · Mybb · Mybb
Name of the Vulnerable Software and Affected Versions: MyBB versions prior to 1.8.34 Description: The issue concerns a cross-site scripting XSS flaw in the User CP module, specifically via the user email field. This allows for potential malicious script execution. Recommendations: For versions...
CVE-2023-30459
SmartPTT SCADA 1.1.0.0 allows remote code execution when the attacker has administrator privileges by writing a malicious C script and executing it on the server via server settings in the administrator control panel on port 8101, by default...
Design/Logic Flaw
SmartPTT SCADA 1.1.0.0 allows remote code execution when the attacker has administrator privileges by writing a malicious C script and executing it on the server via server settings in the administrator control panel on port 8101, by default...
CVE-2023-30459
CVE-2023-30459 affects SmartPTT SCADA 1.1.0.0. The vulnerability enables remote code execution by writing a malicious C# script and executing it on the server via the administrator control panel (port 8101 by default) when the attacker has administrator privileges. This is supported by multiple c...
CVE-2023-30459
SmartPTT SCADA 1.1.0.0 allows remote code execution when the attacker has administrator privileges by writing a malicious C script and executing it on the server via server settings in the administrator control panel on port 8101, by default...
Exploit for CVE-2023-30459
CVE-2023-30459 SmartPTT SCADA 1.1.0.0 allows remote code execu...
KLA48845 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface, bypass security restrictions. Below is a complete list of...
KLA48838 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to spoof user interface. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 Customer Voice can be exploited remotely to spoof...
PT-2023-21948 · Siemens · Siprotec 5
Name of the Vulnerable Software and Affected Versions: SIPROTEC 5 6MD85 CP300 versions 7.80 through 9.40 SIPROTEC 5 6MD86 CP300 versions 7.80 through 9.40 SIPROTEC 5 6MD89 CP300 versions 7.80 through 9.64 SIPROTEC 5 6MU85 CP300 versions 7.80 through 9.40 SIPROTEC 5 7KE85 CP300 versions 7.80 throu...
The vulnerability of the control panel for servers and cloud services, CloudPanel, arises from the use of a rigidly encrypted cryptographic key for the SSL certificate. This allows attackers to gain unauthorized access to protected information.
The vulnerability of the control panel for servers and cloud services like CloudPanel lies in the use of a strictly encrypted cryptographic key for the SSL certificate. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
The vulnerability of the central control module of the Rittal CMC III system, due to deficiencies in access control, allows unauthorized access by intruders to protected information and enhances their privileges.
The vulnerability of the central control block of the Rittal CMC III system is related to deficiencies in access control. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected information and enhance their privileges by cloning the access card used to open...
[SECURITY] Fedora 37 Update: plasma-firewall-5.27.1-1.fc37
Control Panel for your system firewall...
CVE-2023-23464
Media CP Media Control Panel latest version. A Permissive Flash Cross-domain Policy may allow information disclosure...
CVE-2023-23465
Media CP Media Control Panel latest version. CSRF possible through unspecified endpoint...
CVE-2023-23467
Media CP Media Control Panel latest version. Reflected XSS possible through unspecified endpoint...
CVE-2023-23466
Media CP Media Control Panel latest version. Insufficiently protected credential change...