HCL BigFix RunBookAI 安全漏洞

HCL BigFix RunBookAI is an AI-driven automation platform developed by the American company HCL. HCL BigFix RunBookAI has a security vulnerability, which stems from the continuous presence of insecure input texts. The processing of component inputs poses security risks, increasing the likelihood o...

WordPress plugin MStore API 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

Multiple vulnerabilities in "FreeFrom - the nostr client" App

Overview "FreeFrom - the nostr client" App provided by FreeFrom K.K. contains multiple vulnerabilities listed below. Improper verification of cryptographic signature CWE-347 - CVE-2024-36277 Reliance on obfuscation or encryption of security-relevant inputs without integrity checking CWE-649 -...

SAP CRM WebClient UI Cross-Site Scripting Vulnerability

SAP CRM is a customer relationship management system from SAP, Germany. SAP CRM WebClient UI S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, S4FND 107, S4FND 108, WEBCUIF 700, WEBCUIF 701, WEBCUIF 730, WEBCUIF 731, A cross-site scripting vulnerability exists in WEBCUIF 746, WEBCU IF 747,...

Intelbras Router RF 301K 跨站请求伪造漏洞

The Intelbras Router RF 301K is a router from Intelbras in China. A cross-site request forgery vulnerability exists in Intelbras Router RF 301K Firmware 1.1.2, which stems from the lack of a security mechanism to protect tokens and insecure inputs and modules...

Intelbras Router RF 301K 跨站请求伪造漏洞

The Intelbras Router RF 301K is a router from Intelbras in China. A cross-site request forgery vulnerability exists in Intelbras Router RF 301K Firmware 1.1.2, which stems from a lack of authentication and insecure configuration in inputs and modules...