CVE-2025-0543 G DATA Security Client Local privilege escalation

Local privilege escalation in G DATA Security Client due to incorrect assignment of privileges to directories. This vulnerability allows a local, unprivileged attacker to escalate privileges on affected installations by placing an arbitrary executable in a globally writable directory resulting in...

CVE-2025-23528

Incorrect Privilege Assignment vulnerability in Mosterd3d DD Roles dd-roles allows Privilege Escalation.This issue affects DD Roles: from n/a through = 4.1...

CVE-2025-23528

CVE-2025-23528 describes an Incorrect Privilege Assignment in the WordPress plugin DD Roles (by Wouter Dijkstra) that enables authenticated privilege escalation. Affected: DD Roles up to version 4.1. The vulnerability is rated with CVSS 3.1/3.1: Base score 8.8 (High), vectors: AV:N/AC:L/PR:L/UI:N...

Fortinet多款产品 安全漏洞

Fortinet FortiManager and others are products of Fortinet, Inc.Fortinet FortiManager is a centralized network security management platform.Fortinet FortiAnalyzer is a centralized network security reporting solution.Fortinet Fortinet FortiAnalyzer Cloud is a cloud-based logging platform based on...

PT-2025-4922 · Dd Roles · Dd Roles

Name of the Vulnerable Software and Affected Versions: DD Roles versions n/a through 4.1 Description: The issue is related to an incorrect privilege assignment, allowing privilege escalation. This problem affects the mentioned versions of DD Roles. Recommendations: For versions n/a through 4.1,...

The vulnerability of the Drupal Private Content CMS system, related to improper privilege assignment, allows attackers to bypass security restrictions and gain unauthorized access to protected information.

The vulnerability of the Drupal Content Management System’s Private Content module is related to the improper assignment of privileges. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain unauthorized access to protected information...

The vulnerability of the Registration role module in Drupal CMS systems, related to incorrect privilege assignment, allows attackers to bypass security restrictions and enhance their privileges.

The vulnerability of the Registration role module in Drupal CMS systems is related to the improper assignment of privileges. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and enhance their privileges...

CVE-2024-13251

Incorrect Privilege Assignment vulnerability in Drupal Registration role allows Privilege Escalation.This issue affects Registration role: from 0.0.0 before 2.0.1...

CVE-2024-13248

Incorrect Privilege Assignment vulnerability in Drupal Private content allows Target Influence via Framing.This issue affects Private content: from 0.0.0 before 2.1.0...

CVE-2024-13248 Private content - Moderately critical - Access bypass - SA-CONTRIB-2024-012

Incorrect Privilege Assignment vulnerability in Drupal Private content allows Target Influence via Framing.This issue affects Private content: from 0.0.0 before 2.1.0...

CVE-2024-13248 Private content - Moderately critical - Access bypass - SA-CONTRIB-2024-012

Incorrect Privilege Assignment vulnerability in Drupal Private content allows Target Influence via Framing.This issue affects Private content: from 0.0.0 before 2.1.0...

CVE-2024-13248

CVE-2024-13248 is a privilege-assignment flaw in Drupal Private content (SA-CONTRIB-2024-012). The vulnerability arises from incorrect permission handling when private content is framed, enabling target influence and an access bypass for content in versions before 2.1.0. Affected product: Drupal ...

Drupal 安全漏洞

Drupal is an open source content management system developed in the PHP language by the Drupal community. A security vulnerability exists in Drupal Registration role prior to version 2.0.1, which stems from the inclusion of a privilege assignment error vulnerability...

CVE-2024-49644

Incorrect Privilege Assignment vulnerability in AllAccessible Accessibility by AllAccessible allaccessible allows Privilege Escalation.This issue affects Accessibility by AllAccessible: from n/a through = 1.3.4...

PT-2025-3243 · Wpguppy · Wpguppy

Name of the Vulnerable Software and Affected Versions: WPGuppy versions 1.1.0 and earlier Description: The issue is related to an incorrect privilege assignment in WPGuppy, allowing privilege escalation. Recommendations: For versions 1.1.0 and earlier, update to a version that fixes the incorrect...

The vulnerability of the Kubernetes cluster management system for running cloud applications across multiple Karmada clusters, related to incorrect privilege assignment, allows a hacker to elevate their privileges.

The vulnerability of the Kubernetes cluster management system for running cloud applications across multiple Karmada clusters is related to the improper assignment of privileges. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

CVE-2024-56043

Incorrect Privilege Assignment vulnerability in VibeThemes WPLMS allows Privilege Escalation.This issue affects WPLMS: from n/a through 1.9.9...

CVE-2024-56043

CVE-2024-56043 concerns the WordPress plugin WPLMS by VibeThemes. The vulnerability is an Incorrect Privilege Assignment that allows unauthenticated privilege escalation in WPLMS versions up to 1.9.9. The root cause, as described in the sources, is a privilege assignment error. Impact is describe...

CVE-2024-56205

Incorrect Privilege Assignment vulnerability in SunnyKai AI Magic newsletter-page-redirects allows Privilege Escalation.This issue affects AI Magic: from n/a through = 1.0.4...

CVE-2024-56071

Incorrect Privilege Assignment vulnerability in mikeleembruggen Simple Dashboard simple-dashboard allows Privilege Escalation.This issue affects Simple Dashboard: from n/a through = 2.0...