CVE-2026-6274

Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and Trade Ltd. Co. Redline WR3200 allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Redline WR3200: from 7.1.3 before 7.1.8...

CVE-2026-6274

CVE-2026-6274 concerns an authentication weakness in DTS Electronics Industry and Trade Ltd. Co. Redline WR3200, where improper/missing authentication for a critical function allows accessing functionality not properly constrained by ACLs. Affected firmware ranges are 7.1.3 through before 7.1.8. ...

WordPress plugin Broadcast Live Video 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code injection...

CVE-2026-1713

IBM MQ 9.1.0.0 through 9.1.0.33 LTS, 9.2.0.0 through 9.2.0.40 LTS, 9.3.0.0 through 9.3.0.36 LTS, 9.30.0 through 9.3.5.1 CD, 9.4.0.0 through 9.4.0.17 LTS, and 9.4.0.0 through 9.4.4.1 CD...

CVE-2025-68900

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Kriesi Enfold allows DOM-Based XSS. This issue affects Enfold: from n/a through 7.1.3...

Vivotek IP7137 操作系统命令注入漏洞

The Vivotek IP7137 is an IP camera from China's Vivotek Communications Vivotek. An operating system command injection vulnerability exists in the Vivotek IP7137 version 0200a, which stems from improper cleanup of the parameter systemntpIt, and could lead to a command injection attack...

CVE-2023-37933

An improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability CWE-79 in FortiADC GUI version 7.4.0, 7.2.0 through 7.2.1 and before 7.1.3 allows an authenticated attacker to perform an XSS attack via crafted HTTP or HTTPs requests...

PT-2024-14494 · Pluggabl Llc · Booster Plus For Woocommerce

Name of the Vulnerable Software and Affected Versions: Booster Plus for WooCommerce versions prior to 7.1.3 Description: The issue is related to a Missing Authorization vulnerability in Pluggabl LLC Booster Plus for WooCommerce. Recommendations: For versions prior to 7.1.3, update to version 7.1....

SUSE CVE-2017-11142

In PHP before 5.6.31, 7.x before 7.0.17, and 7.1.x before 7.1.3, remote attackers could cause a CPU consumption denial of service attack by injecting long form variables, related to main/phpvariables.c...

SiteServer CMS SQL注入漏洞

SiteServer CMS is an open-source content management system CMS from China's BioRenewable Software Technology Development Company. A security vulnerability exists in SiteServer CMS version 7.1.3, which is caused by SQL injection...

CVE-2022-3713

creationtimestamp| type| source ---|---|--- 2022-12-01 20:36:58+00:00| seen| https://t.me/cibsecurity/53778 2022-12-07 10:30:06+00:00| exploited| https://t.me/truesecator/3794...

CVE-2022-34380

Dell CloudLink 7.1.3 and all earlier versions contain an Authentication Bypass Using an Alternate Path or Channel Vulnerability. A high privileged local attacker may potentially exploit this vulnerability leading to authentication bypass and access the CloudLink system console. This is critical...

PT-2022-22154 · Dell · Cloudlink

Name of the Vulnerable Software and Affected Versions: Dell CloudLink versions prior to 7.1.3 Description: The issue allows a high privileged local attacker to potentially bypass authentication and access the CloudLink system console, leading to a takeover of the system. This is due to an...

Dell CloudLink 授权问题漏洞

Dell CloudLink is a data encryption and key management system from Dell USA. A security vulnerability exists in Dell CloudLink version 7.1.3 and prior versions. An attacker could exploit the vulnerability to bypass authentication and gain access to the CloudLink system console...

CVE-2020-5393

In Appspace On-Prem through 7.1.3, an adversary can steal a session token via XSS...

CVE-2019-15897

beegfs-ctl in ThinkParQ BeeGFS through 7.1.3 allows Authentication Bypass via communication with a BeeGFS metadata server which is typically not exposed to external networks...

IBM OpenPages GRC Platform Cross-Site Request Forgery Vulnerability (CNVD-2017-34431)

IBM OpenPages GRC Platform is a suite of platforms for managing enterprise risk and compliance from IBM in the United States. The platform provides a set of core services and functional components that cover the risk and compliance domain including operational risk, policy and compliance, financi...