4 matches found
XWiki Full Calendar Macro 信息泄露漏洞
XWiki Full Calendar Macro is an open source log table extension component for XWiki. An information disclosure vulnerability exists in XWiki Full Calendar Macro versions prior to 2.4.6, which originates from a user with permission to view the Calendar.JSONService page may be able to access databa...
PT-2025-15431 · Fortinet · Fortiisolator Cli
Name of the Vulnerable Software and Affected Versions: Fortinet FortiIsolator CLI versions prior to 2.4.6 Description: The issue is related to an improper neutralization of special elements used in an OS command, which allows a privileged attacker to execute unauthorized code or commands via...
CVE-2022-3267
Cross-Site Request Forgery CSRF in GitHub repository ikus060/rdiffweb prior to 2.4.6...
CVE-2022-3250 Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in ikus060/rdiffweb
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.6...