Linux Distros Unpatched Vulnerability : CVE-2018-10546

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. An infinite loop exists in ext/iconv/iconv.c...

CVE-2024-8693 Kaon CG3000 dhcpcd Command cross site scripting

A vulnerability, which was classified as problematic, has been found in Kaon CG3000 1.01.43. Affected by this issue is some unknown functionality of the component dhcpcd Command Handler. The manipulation of the argument -h with the input alert'XSS' leads to cross site scripting. The attack may be...

HDF5 安全漏洞

HDF Group HDF5 is a suite of tools for managing and storing different types of data from the American company HDF Group. The product supports managing, manipulating, viewing and analyzing data and generating files in portable formats. A security vulnerability exists in HDF5. No information about...

WordPress Plugin Worthy – VG WORT Integration für WordPress 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blogging sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin Worthy - VG WORT...

SAP BusinessObjects Business Intelligence Platform 信息泄露漏洞

SAP BusinessObjects Business Intelligence Platform is a complete business analytics platform from SAP. The platform combines market-leading SAP data integration products, data management products, and business intelligence BI products to eliminate system integration challenges and quickly and...

showdoc 代码问题漏洞

showdoc is open source a great tool for IT teams to share documents online. A security vulnerability exists in showdoc v2.10.3, there is no information about the vulnerability at the moment, please stay tuned to CNNVD or the vendor's announcement...

CVE-2021-44682

An issue 6 of 6 was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited due to deserialization...

CVE-2021-44677

An issue 1 of 6 was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited due to deserialization...

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...

Threat Outbreak Alert RuleID30661: Email Messages Distributing Malicious Software on September 19, 2017

Medium Alert ID: 55326 First Published: 2017 September 19 12:13 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID30661 may contain the following files: Name ...

Threat Outbreak Alert RuleID28730: Email Messages Distributing Malicious Software on April 13, 2017

Medium Alert ID: 53440 First Published: 2017 April 13 14:29 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID28730 may contain the following files: Name | Si...

Moodle CMS 2.5.0-1 Cross Site Scripting Vulnerability

Moodle CMS version 2.5.0-1 suffers from a cross site scripting vulnerability. ============================================= - Original release date: 15 September, 2013 - Discovered by: Emilio Pinna Application Security Analyst at Abinsula - Contact: emilio pinn gmail...

SQL Injection in Eclime

Vulnerability ID: HTB22707 Reference: http://www.htbridge.ch/advisory/sqlinjectionineclime2.html Product: Eclime Vendor: www.eclime.com http://www.eclime.com/ Vulnerable Version: 1.1.2b Vendor Notification: 16 November 2010 Vulnerability Type: SQL Injection Status: Not Fixed, Vendor Alerted,...

Novaboard v1.1.4 Local File Inclusion Vulnerability

Exploit for php platform in category web applications =================================================== Novaboard v1.1.4 Local File Inclusion Vulnerability =================================================== Reference: http://www.htbridge.ch/advisory/lfiinnovaboard.html Product: Novaboard Vendo...