LiteIDE X security vulnerabilities

LiteIDE X is a Go language code development tool developed by Seven Leaf individuals. Versions of LiteIDE X prior to 38.4 contained security vulnerabilities. These vulnerabilities were caused by null pointer dereferencing in the program files screen.C, state.C, and vterm.C, which could lead to...

CVE-2022-33315

Deserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions...

CVE-2024-41374

ICEcoder 8.1 is vulnerable to Cross Site Scripting XSS via lib/settings-screen.php...

PT-2024-29382 · Icecoder · Icecoder

Name of the Vulnerable Software and Affected Versions: ICEcoder version 8.1 Description: The issue is related to Cross Site Scripting XSS via the lib/settings-screen.php file. This allows for potential malicious script injection. Recommendations: For ICEcoder version 8.1, consider restricting...

CVE-2024-1114

A vulnerability has been found in openBI up to 1.0.8 and classified as critical. This vulnerability affects the function dlfile of the file /application/index/controller/Screen.php. The manipulation of the argument fileUrl leads to improper access controls. The attack can be initiated remotely. T...

openBI 代码注入漏洞

openBI is a big data visualization solution from openBI. A code injection vulnerability exists in openBI 1.0.8 and earlier versions, which stems from a problem with the index function in the /application/index/controller/Screen.php file, which could lead to code injection. Currently there are no...

openBI 访问控制错误漏洞

openBI is a big data visualization solution from openBI, Inc. An access control error vulnerability exists in openBI prior to version 1.0.8, which stems from a problem with the dlfile function in the /application/index/controller/Screen.php file that could lead to incorrect access control...

openBI Code Issues Vulnerabilities

openBI is a big data visualization solution from openBI. A code issue vulnerability exists in openBI version 1.0.8, which stems from an unrestricted file upload in the uploadIcon method of the /application/index/controller/Screen.php file...

CVE-2022-33315

Deserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions...

CVE-2022-33317

Inclusion of Functionality from Untrusted Control Sphere vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric...

CVE-2022-33315

Deserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions...

Design/Logic Flaw

Inclusion of Functionality from Untrusted Control Sphere vulnerability in ICONICS GENESIS64 versions 10.97.1 and prior and Mitsubishi Electric MC Works64 versions 4.04E 10.95.210.01 and prior allows an unauthenticated attacker to execute an arbitrary malicious code by leading a user to load a...

PT-2022-21765

Name of the Vulnerable Software and Affected Versions ICONICS GENESIS64 versions 10.97.1 and prior Mitsubishi Electric MC Works64 versions 4.04E 10.95.210.01 and prior Description The issue allows an unauthenticated attacker to execute arbitrary malicious code by leading a user to load a monitori...

Linux kernel vcsu device write access vulnerability

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A write access vulnerability exists in the Linux kernel vcsu device. The vulnerability stems from the fact that...

CVE-2014-2355

The 1 CimView and 2 CimEdit components in GE Proficy HMI/SCADA-CIMPLICITY 8.2 and earlier allow remote attackers to gain privileges via a crafted CIMPLICITY screen aka .CIM file...

DEBIAN-CVE-2013-4557

The Security Screen core/securite/ecransecurite.php before 1.1.8 for SPIP, as used in SPIP 3.0.x before 3.0.12, allows remote attackers to execute arbitrary PHP via the connect parameter...