5 matches found
EUVD-2025-209369
An Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Apache DolphinScheduler. This vulnerability may allow unauthorized actors to access sensitive information, including database credentials. This issue affects Apache DolphinScheduler versions 3.1.. Users are...
PT-2025-32653 · Siemens · Simatic Rtls Locating Manager
Name of the Vulnerable Software and Affected Versions: SIMATIC RTLS Locating Manager versions prior to V3.2 Description: A vulnerability exists in SIMATIC RTLS Locating Manager that allows an authenticated remote attacker with high privileges to execute arbitrary code with 'NT Authority/SYSTEM'...
PT-2024-15214 · WordPress · Product Enquiry For Woocommerce
Name of the Vulnerable Software and Affected Versions: The Product Enquiry for WooCommerce WordPress plugin versions prior to 3.2 Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs because the page parameter is not properly sanitised and escaped before being...
PT-2022-13708 · Mruby +1 · Mruby +1
Name of the Vulnerable Software and Affected Versions: mruby versions prior to 3.2 Description: The issue is related to a NULL Pointer Dereference in mrb vm exec with super, which can cause the mruby interpreter to crash. This affects the availability of the system. Recommendations: For versions...
MiniBB 3.1.1 Cross Site Scripting
Security Advisory - Curesec Research Team 1. Introduction Affected Product: MiniBB 3.1.1 Fixed in: 3.2 Fixed Version Link: http://www.minibb.com/download.php?file=minibb Vendor Contact: [email protected] Vulnerability Type: XSS Remote Exploitable: Yes Reported to vendor: 09/01/2015 Disclosed to...