CVE-2024-2211

Cross-Site Scripting stored vulnerability in Gophish affecting version 0.12.1. This vulnerability could allow an attacker to store a malicious JavaScript payload in the campaign menu and trigger the payload when the campaign is removed from the menu...

BIT-JENKINS-2023-35141

In Jenkins LTS 2.387.3 and earlier, POST requests are sent in order to load the list of context actions. If part of the URL includes insufficiently escaped user-provided values, a victim may be tricked into sending a POST request to an unexpected endpoint by opening a context menu...

CVE-2024-1936

The encrypted subject of an email message could be incorrectly and permanently assigned to an arbitrary other email message in Thunderbird's local cache. Consequently, when replying to the contaminated email message, the user might accidentally leak the confidential subject to a third-party. Whil...

CVE-2024-25422

SQL Injection vulnerability in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code and obtain sensitive information via the SEMCMSMenu.php component...

DRUPAL-CONTRIB-2024-011

The Coffee module helps you to navigate through the Drupal admin menus faster with a shortcut popup. The module doesn't sufficiently escape menu names when displaying them in the popup, thereby exposing a XSS vulnerability. This vulnerability is mitigated by the fact that an attacker must have a...

CVE-2023-50737

The SE menu contains information used by Lexmark to diagnose device errors. A vulnerability in one of the SE menu routines can be leveraged by an attacker to execute arbitrary code...

CVE-2023-50737 An input validation vulnerability in the SE Menu allows an attacker to execute arbitrary code.

The SE menu contains information used by Lexmark to diagnose device errors. A vulnerability in one of the SE menu routines can be leveraged by an attacker to execute arbitrary code...

CVE-2023-50737

CVE-2023-50737 describes an input validation vulnerability in the Lexmark printer SE menu. Affected product: Lexmark printers with the SE menu component. Root cause: a vulnerability in one of the SE menu routines allows an attacker to execute arbitrary code, potentially via network access. Impact...

CVE-2023-50737 An input validation vulnerability in the SE Menu allows an attacker to execute arbitrary code.

The SE menu contains information used by Lexmark to diagnose device errors. A vulnerability in one of the SE menu routines can be leveraged by an attacker to execute arbitrary code...

SEMCMS Security Breach

SEMCMS is a multilingual content management system CMS for foreign trade websites. A security vulnerability exists in SEMCMS v.4.8, which originates from an SQL injection vulnerability. The vulnerability can be exploited to execute arbitrary code and obtain sensitive information via the...

Lexmark Security Breach

Lexmark is a line of printers in the United States. A security vulnerability exists in Lexmark devices that stems from an input validation error vulnerability in the SE menu. An attacker could exploit the vulnerability to execute arbitrary code...

OESA-2024-1174 freeglut security update

Freeglut is a free-software/open-source alternative to the OpenGL Utility Toolkit GLUT library. GLUT was originally written to support the sample programs in the second edition OpenGL 'RedBook'. Since then, GLUT has been used in a wide variety of practical applications because it is simple, widel...

CVE-2024-24876

Cross-Site Request Forgery CSRF vulnerability in Janis Elsts Admin Menu Editor.This issue affects Admin Menu Editor: from n/a through 1.12...

CVE-2024-24876

Cross-Site Request Forgery CSRF vulnerability in Janis Elsts Admin Menu Editor.This issue affects Admin Menu Editor: from n/a through 1.12...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Janis Elsts Admin Menu Editor.This issue affects Admin Menu Editor: from n/a through 1.12...

CVE-2024-24876 WordPress Admin Menu Editor Plugin <= 1.12 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Janis Elsts Admin Menu Editor.This issue affects Admin Menu Editor: from n/a through 1.12...

CVE-2024-24876

CVE-2024-24876 is a CSRF vulnerability in the WordPress plugin Admin Menu Editor affecting versions

CVE-2024-24876 WordPress Admin Menu Editor Plugin <= 1.12 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Janis Elsts Admin Menu Editor.This issue affects Admin Menu Editor: from n/a through 1.12...

WordPress Plugin Admin Menu Editor Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

PT-2024-20632 · Unknown · Admin Menu Editor

Name of the Vulnerable Software and Affected Versions: Admin Menu Editor versions 1.12 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the Admin Menu Editor. This allows an attacker to perform unintended actions on the victim's behalf. Recommendations: For versions 1.12 a...