CVE-2022-1279

A vulnerability in the encryption implementation of EBICS messages in the open source librairy ebics-java/ebics-java-client allows an attacker sniffing network traffic to decrypt EBICS payloads. This issue affects: ebics-java/ebics-java-client versions prior to 1.2...

RSM Design Website Template SQL注入漏洞

RSM Design Website Template is a website template from RSM Design. A SQL injection vulnerability exists in RSM Design Website Template prior to version 1.2, which stems from the inclusion of a SQL injection vulnerability...

PT-2024-37750 · WordPress · Ninjateam Header Footer Custom Code

Name of the Vulnerable Software and Affected Versions: NinjaTeam Header Footer Custom Code WordPress plugin versions prior to 1.2 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks. This is possible because some settings are not...

PT-2024-38032 · Profelis Informatics Consulting · Passbox

Name of the Vulnerable Software and Affected Versions: Profelis Informatics and Consulting PassBox versions prior to 1.2 Description: The issue is related to improper authentication, missing authentication for critical functions, and improper authorization, allowing authentication abuse. This can...

CVE-2022-1279

A vulnerability in the encryption implementation of EBICS messages in the open source librairy ebics-java/ebics-java-client allows an attacker sniffing network traffic to decrypt EBICS payloads. This issue affects: ebics-java/ebics-java-client versions prior to 1.2...

CVE-2022-1279 Insecure EBICS messages encryption implementation in ebics-java/ebics-java-client could allow an adjacent attacker to decrypt EBICS payloads

A vulnerability in the encryption implementation of EBICS messages in the open source librairy ebics-java/ebics-java-client allows an attacker sniffing network traffic to decrypt EBICS payloads. This issue affects: ebics-java/ebics-java-client versions prior to 1.2...

EBICS Java Client 安全漏洞

EBICS Java Client is a Java open source EBICS client. It is used to interact with banks using EBICS Electronic Banking Internet Communications Standard. A security vulnerability exists in EBICS Java Client versions prior to 1.2, which stems from a problem with the cryptographic implementation of...

WordPress ultimate-category-excluder plugin cross-site request forgery vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site request forgery vulnerability exists in WordPress Ultimate-category-excluder Plugin...