CVE-2025-68007 WordPress Event Espresso 4 Decaf plugin <= 5.0.37.decaf - Settings Change vulnerability

Missing Authorization vulnerability in Event Espresso Event Espresso 4 Decaf event-espresso-decaf allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Event Espresso 4 Decaf: from n/a through = 5.0.37.decaf...

CVE-2023-21411

User provided input is not sanitized in the “Settings Access Control” configuration interface allowing for arbitrary code execution...

CVE-2023-21411

User provided input is not sanitized in the “Settings Access Control” configuration interface allowing for arbitrary code execution...

PT-2023-18183 · Axis Communications +1 · Axis License Plate Verifier +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns unsanitized user input in the "Settings Access Control" configuration interface, which allows for arbitrary code execution. There is ...

SAMSUNG Mobile devices 访问控制错误漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in the SAMSUNG Mobile device SMR Jul-2023 Release 1 version, which stems from an improper access control vulnerability...

CVE-2022-36202

Doctor's Appointment System1.0 is vulnerable to Incorrect Access Control via edoc/patient/settings.php. The settings.php is affected by Broken Access Control IDOR via id= parameter...