10 matches found
EUVD-2026-30991
Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal Node View Permissions allows Forceful Browsing. This issue affects Node View Permissions: from 0.0.0 before 1.7.0, from 2.0.0 before 2.0.1...
CVE-2026-33907
Ella Core (private 5G core) vulnerability CVE-2026-33907: versions prior to 1.7.0 panic when processing Authentication Response and Authentication Failure NAS messages missing IEs, allowing an attacker to crash the process by sending crafted NAS messages without authentication. This leads to serv...
Linux Distros Unpatched Vulnerability : CVE-2021-45325
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Server Side Request Forgery SSRF vulneraility exists in Gitea before 1.7.0 using the OpenID URL. CVE-2021-45325 Note that Nessus relies on the presence of the...
PT-2024-29579 · Txtdot · Txtdot
Name of the Vulnerable Software and Affected Versions: txtdot versions prior to 1.7.0 txtdot version 1.7.0 Description: The issue concerns a Server-Side Request Forgery SSRF vulnerability in the /get route, allowing remote attackers to use the server as a proxy to send HTTP GET requests to...
PT-2023-22998 · Pyload · Pyload
Name of the Vulnerable Software and Affected Versions: Payload versions prior to 1.7.0 Description: The issue allows a user to reverse-engineer hidden field values via brute force if they have access to documents containing these fields. This can be done by attempting to access hidden field data...
CVE-2022-0697
Open Redirect in GitHub repository archivy/archivy prior to 1.7.0...
Issuetracker phpBugTracker cross-site request forgery vulnerability (CNVD-2017-30858)
Issuetracker phpBugTracker is a web-based defect tracking system. The system provides features such as project management and defect tracking services. A cross-site request forgery vulnerability exists in Issuetracker phpBugTracker versions prior to 1.7.0. A remote attacker can exploit this...
Issuetracker phpBugTracker cross-site scripting vulnerability (CNVD-2017-30874)
Issuetracker phpBugTracker is a web-based defect tracking system. The system provides features such as project management and defect tracking services. A cross-site scripting vulnerability exists in Issuetracker phpBugTracker versions prior to 1.7.0. A remote attacker can exploit this vulnerabili...
Issuetracker phpBugTracker SQL Injection Vulnerability (CNVD-2017-30876)
Issuetracker phpBugTracker is a web-based defect tracking system. The system provides features such as project management and defect tracking services. An SQL injection vulnerability exists in Issuetracker phpBugTracker versions prior to 1.7.0. A remote attacker can exploit this vulnerability to...
PT-2008-4758 · Pure · Pure Software Lore
Name of the Vulnerable Software and Affected Versions: Pure Software Lore versions prior to 1.7.0 Description: The issue concerns multiple cross-site scripting XSS vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related ...