5 matches found
CVE-2026-6610
A vulnerability has been found in liangliangyy DjangoBlog up to 2.1.0.0. The impacted element is an unknown function of the file djangoblog/settings.py of the component Setting Handler. Such manipulation of the argument USER/PASSWORD leads to hard-coded credentials. The attack may be launched...
CVE-2026-6578 liangliangyy DjangoBlog Setting settings.py hard-coded credentials
A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting Handler. The manipulation of the argument SECRETKEY results in hard-coded credentials. The attack can be launched remotely. Th...
PT-2024-39103 · Unknown · Code-Projects Online Shoe Store
Name of the Vulnerable Software and Affected Versions: code-projects Online Shop Store version 1.0 Description: A problematic vulnerability was found in the code-projects Online Shop Store, affecting unknown code of the file /settings.php. The manipulation of the error argument leads to cross-sit...
PT-2023-14639 · Unknown · Pws Personal Weather Station Dashboard
Name of the Vulnerable Software and Affected Versions: PWS Personal Weather Station Dashboard PWS Dashboard version 2012 lts Description: The issue allows remote code execution by injecting PHP code into settings.php. Attacks can use the "PWS printfile.php", "PWS frame text.php", "PWS...
Observium Directory Traversal and Local File Inclusion Vulnerability (CNVD-2020-6244)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a directory traversal and local file inclusion vulnerability. The vulnerability stems from the ability to load any file with the...