CVE-2023-7339

Stack-based buffer overflow vulnerability in Softing Industrial Automation GmbH gateways allows overflow buffers. This issue affects pnGate: through 1.30 epGate: through 1.30 mbGate: through 1.30 smartLink HW-DP: through 1.30 smartLink HW-PN: through 1.01...

CVE-2023-7339 Data collection for dowloading leads into buffer overflow

Stack-based buffer overflow vulnerability in Softing Industrial Automation GmbH gateways allows overflow buffers. This issue affects pnGate: through 1.30 epGate: through 1.30 mbGate: through 1.30 smartLink HW-DP: through 1.30 smartLink HW-PN: through 1.01...

CVE-2023-7339

This CVE (CVE-2023-7339) affects Softing Industrial Automation gateways: pnGate, epGate, mbGate, smartLink HW-DP, and smartLink HW-PN, up to the indicated versions (pnGate/epGate/mbGate up to 1.30; smartLink HW-DP up to 1.30; smartLink HW-PN up to 1.01). The issue is a stack-based buffer overflow...

CVE-2020-37215

MSN Password Recovery version 1.30 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized input in the registration code field. Attackers can generate a 9000-byte buffer of repeated characters and paste it into the 'User Name and...

Top Password MSN Password Recovery 安全漏洞

Top Password MSN Password Recovery is a MSN password recovery tool developed by Top Password Corporation. Version 1.30 of Top Password MSN Password Recovery contains a security vulnerability; this vulnerability stems from a buffer overflow in the registration code field, which may cause the...

CVE-2023-49172

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BrainCert BrainCert – HTML5 Virtual Classroom allows Reflected XSS.This issue affects BrainCert – HTML5 Virtual Classroom: from n/a through 1.30...

Cerebrate 安全漏洞

Cerebrate is an open source platform from Cerebrate Open Source. Designed to act as an interconnect coordinator for trusted contact information providers and other security tools. A security vulnerability exists in versions of Cerebrate prior to 1.30, which stems from the possibility that an...

Linux Distros Unpatched Vulnerability : CVE-2017-5368

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ZoneMinder v1.30 and v1.29, an open-source CCTV server web application, is vulnerable to CSRF Cross Site Request Forgery which allows a remote attack to make...

Linux Distros Unpatched Vulnerability : CVE-2016-10206

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site request forgery CSRF vulnerability in Zoneminder 1.30 and earlier allows remote attackers to hijack the authentication of users for requests that...

OPENSUSE-SU-2025:15234-1 kubernetes1.30-apiserver-1.30.14-1.1 on GA media

These are all security issues fixed in the kubernetes1.30-apiserver-1.30.14-1.1 package on the GA media of openSUSE Tumbleweed...

CVE-2022-48193

Weak ciphers in Softing smartLink SW-HT before 1.30 are enabled during secure communication SSL...

CVE-2025-1078 AppHouseKitchen AlDente Charge Limiter XPC Service com.apphousekitchen.aldente-pro.helper shouldAcceptNewConnection improper authorization

A vulnerability has been found in AppHouseKitchen AlDente Charge Limiter up to 1.29 on macOS and classified as critical. This vulnerability affects the function shouldAcceptNewConnection of the file com.apphousekitchen.aldente-pro.helper of the component XPC Service. The manipulation leads to...

WordPress plugin Flipping Cards 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

PT-2024-28819 · WordPress · Sydney Toolbox

Name of the Vulnerable Software and Affected Versions: The Sydney Toolbox plugin for WordPress versions up to, and including, 1.30 Description: The issue is related to Stored Cross-Site Scripting via the style parameter due to insufficient input sanitization and output escaping. This allows...

WordPress plugin Sydney Toolbox 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

CVE-2023-49172

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BrainCert BrainCert – HTML5 Virtual Classroom allows Reflected XSS.This issue affects BrainCert – HTML5 Virtual Classroom: from n/a through 1.30...

Control iD Gerencia Web 安全漏洞

Control iD Gerencia Web is an application from Control iD. A security vulnerability exists in Control iD Gerencia Web version 1.30, which stems from an issue with the explicit storage of sensitive information in the component Cookie Handler...

D-Link DIR-878 操作系统命令注入漏洞

The D-Link DIR-878 is a wireless router from China-based AUO D-Link. The D-Link DIR-878 DIR878FW1.30B08 firmware version suffers from an operating system command injection vulnerability that stems from its /SetNetworkSettings/SubnetMask component that allows attackers to achieve command injection...

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...

MGASA-2020-0275 Updated perl-YAML packages fix security vulnerability

Updated perl-YAML package fixes security vulnerability: This update enforces that $LoadCode must be enabled to use the feature of evaluating typeglobs, because with the typeglob feature you would be able to set the variable $YAML::LoadCode from a YAML file, and that would be a security issue. The...