wger 安全漏洞

wger is an open-source FLOSS fitness/exercise, nutrition, and weight tracking application developed using Django by the wger Project. Versions of wger 2.5 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the fact that the GymConfigUpdateView declared a...

CVE-2025-62393

A flaw was found in the course overview output function where user access permissions were not fully enforced. This could allow unauthorized users to view information about courses they should not have access to, potentially exposing limited course details...

EUVD-2006-7197

Malware in sbrugna...

EUVD-2019-9872

Malware in sbrugna...

EUVD-2007-4419

Malware in sbrugna...

EUVD-2011-1919

Malware in sbrugna...

EUVD-2016-4378

Malware in sbrugna...

EUVD-2005-2791

Malware in sbrugna...

CVE-2019-1376

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio SSMS when it improperly enforces permissions, aka 'SQL Server Management Studio Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1313...

Code injection

The Customer Management Framework CMF for Pimcore adds functionality for customer data management, segmentation, personalization and marketing automation. An authenticated and unauthorized user can access the list of potential duplicate users and see their data. Permissions are enforced when...

CVE-2019-1376

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio SSMS when it improperly enforces permissions, aka 'SQL Server Management Studio Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1313...

CVE-2019-1313

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio SSMS when it improperly enforces permissions, aka 'SQL Server Management Studio Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1376...

Microsoft Windows Multiple Vulnerabilities (KB4056898)

This host is missing an important security update according to Microsoft KB4056898 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

F5 BIG-IP - iControl vulnerability CVE-2016-9256

Permissions enforced by iControl can lag behind the actual permissions assigned to a user if the rolemap is not reloaded between the time the permissions are changed and the time of the user SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced...

Microsoft SQL Server Analysis Services Information Disclosure Vulnerability

An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces permissions. An attacker could exploit the vulnerability if the attacker's credentials allow access to an affected SQL server database. An attacker who successfully exploited the...

CVE-2009-2208

FreeBSD 6.3, 6.4, 7.1, and 7.2 does not enforce permissions on the SIOCSIFINFOIN6 IOCTL, which allows local users to modify or disable IPv6 network interfaces, as demonstrated by modifying the MTU...

USN-727-2: NetworkManager vulnerability

USN-727-1 fixed vulnerabilities in network-manager-applet. This advisory provides the corresponding updates for NetworkManager. It was discovered that NetworkManager did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view system and...