14 matches found
CVE-2024-53252
creationtimestamp| type| source ---|---|--- 2026-01-22 11:21:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcz2yblmdo2t...
CVE-2025-58744 Hard-Coded Default Credentials Enable Document Archive Decryption in Milner ImageDirector Capture
Use of Default Credentials, Hard-coded Credentials vulnerability in C2SGlobalSettings.dll in Milner ImageDirector Capture on Windows allows decryption of document archive files using credentials decrypted with hard-coded application encryption key. This issue affects ImageDirector Capture: from...
GESTSUP SQL注入漏洞
GESTSUP is a software application from the French company GESTSUP. It is 100% web-based SUPport MANAGEMENT software that manages tickets and devices. A SQL injection vulnerability exists in GESTSUP 3.2.56 and prior versions, which arises from user-controlled search input in the search bar feature...
WordPress Listify theme <= 3.2.5 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Listify versions = 3.2.5...
CVE-2025-11695
When tlsInsecure=False appears in a connection string, certificate validation is disabled. This vulnerability affects MongoDB Rust Driver versions prior to v3.2.5...
CVE-2023-53251
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: pcie: fix NULL pointer dereference in iwlpcieirqrxmsixhandler rxq can be NULL only when transpcie-rxq is NULL and entry-entry is zero. For the case when entry-entry is not equal to 0, rxq won't be NULL even if...
WordPress Houzez Login Register plugin <= 3.2.5 - Privilege Escalation vulnerability
Privilege Escalation vulnerability discovered by Kursat Cetin in WordPress Plugin Houzez Login Register versions = 3.2.5...
CVE-2023-32510
creationtimestamp| type| source ---|---|--- 2023-08-24 16:14:57+00:00| seen| https://t.me/cibsecurity/69118...
CVE-2022-2840
The Zephyr Project Manager WordPress plugin before 3.2.5 does not sanitise and escape various parameters before using them in SQL statements via various AJAX actions available to both unauthenticated and authenticated users, leading to SQL injections...
rsync 输入验证错误漏洞
rsync is an open source utility program by Wayne Davison, an individual developer, that provides fast incremental file transfers. A security vulnerability exists in versions prior to rsync 3.2.5 that stems from insufficient validation of filenames by the rsync client...
CVE-2020-24480
Out-of-bounds write in the IntelR XTU before version 6.5.3.25 may allow a privileged user to potentially enable denial of service via local access...
Wireshark Resource Management Error Vulnerability (CNVD-2020-49576)
Wireshark formerly known as Ethereal is a suite of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in Wireshark versions 3.2.0 through 3.2.5. An attacker...
PT-2018-2283 · Cisco · Cisco Small Business Routers
Name of the Vulnerable Software and Affected Versions: Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers affected versions not specified Description: A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could...
2021-05 Cumulative Update Preview for .NET Framework 3.5 and 4.8 for Windows Server, version 20H2 for x64 (KB5003254)
2021-05 Cumulative Update Preview for .NET Framework 3.5 and 4.8 for Windows Server, version 20H2 for x64 KB5003254...