CVE-2023-50855

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Sam Perrow Pre Party Resource Hints.This issue affects Pre Party Resource Hints: from n/a through 1.8.18...

PT-2024-15125 · 10Web · The Photo Gallery By 10Web

Name of the Vulnerable Software and Affected Versions: The Photo Gallery by 10Web plugin for WordPress versions up to, and including, 1.8.18 Description: The issue is related to Stored Cross-Site Scripting via widgets due to insufficient input sanitization and output escaping on user-supplied...

CVE-2023-50855

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Sam Perrow Pre Party Resource Hints.This issue affects Pre Party Resource Hints: from n/a through 1.8.18...

Security fix for the ALT Linux 9 package ipmitool version 1.8.18-alt4

1.8.18-alt4 built June 3, 2021 Anton Farygin in task 272538 --- Feb. 27, 2021 Anton Farygin - applied patches from upstream git to fix security issue Fixes: CVE-2020-5208 see https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp - added upstream fix FTBFS with gcc-10...

CVE-2019-16524

The easy-fancybox plugin before 1.8.18 for WordPress aka Easy FancyBox is susceptible to Stored XSS in the Settings Menu inc/class-easyfancybox.php due to improper encoding of arbitrarily submitted settings parameters. This occurs because there is no inline styles output filter...

MyBB <= 1.8.17 XSS Vulnerability

MyBB is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mybb:mybb";...

CVE-2017-7234

A maliciously crafted URL to a Django 1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 before 1.8.18 site using the django.views.static.serve view could redirect to any other domain, aka an open redirect vulnerability...

PT-2017-17596 · Django Software Foundation +2 · Django +2

Name of the Vulnerable Software and Affected Versions: Django versions 1.8 through 1.8.18 Django versions 1.9 through 1.9.13 Django versions 1.10 through 1.10.7 Description: A maliciously crafted URL to a Django site using the django.views.static.serve view could redirect to any other domain. Thi...

Cisco Meeting Server Authentication Bypass Vulnerability

Cisco Meeting Server formerly known as Acano Conferencing Server is the United States Cisco Cisco company's set of audio and video conferencing server software. An authentication bypass vulnerability exists in the web-based management interface in Cisco Meeting Server versions 1.8.18 to 1.9.6 and...