16 matches found
EUVD-2024-2601
Malicious code in bioql PyPI...
EUVD-2024-2524
Malicious code in bioql PyPI...
CVE-2024-43377
Umbraco CMS is an ASP.NET CMS. An authenticated user can access a few unintended endpoints. This issue is fixed in 14.1.2...
CVE-2018-13422
TCExam before 14.1.2 has XSS via an ff or xl field...
Santesoft Sante DICOM Viewer Pro 缓冲区错误漏洞
Santesoft Sante DICOM Viewer Pro is a professional medical image DICOM workstation and viewer from Santesoft. It is used to view, edit and convert DICOM format medical image files. A buffer error vulnerability exists in Santesoft Sante DICOM Viewer Pro 14.1.2 and prior versions, which stems from...
CVE-2024-47458
Bridge versions 13.0.9, 14.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial of service condition. Exploitation of this issue...
CVE-2024-45147
Bridge versions 13.0.9, 14.1.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim...
Umbraco 安全漏洞
Umbraco is an open source content management system CMS written in C by the Danish company Umbraco. A security vulnerability exists in Umbraco versions prior to 14.1.2, which stems from the fact that certain endpoints in the management API can return stack trace information even if Umbraco is not...
Umbraco 安全漏洞
Umbraco is an open source content management system CMS written in C from Umbraco, Denmark. A security vulnerability exists in Umbraco versions prior to 14.1.2 that stems from an authenticated user having access to some unintended endpoints...
PT-2024-30539 · Umbraco · Umbraco Cms
Name of the Vulnerable Software and Affected Versions: Umbraco CMS versions prior to 14.1.2 Description: The issue allows an authenticated user to access a few unintended endpoints. This is because a few endpoints in the Umbraco Management API were not properly protected, requiring only...
PT-2024-30538 · Umbraco · Umbraco
Name of the Vulnerable Software and Affected Versions: Umbraco versions prior to 14.1.2 Description: The issue concerns Umbraco, an ASP.NET CMS, where some endpoints in the Management API can return stack trace information even when Umbraco is not in debug mode. This can occur, for example, when...
GitLab 13.3 < 13.12.9 / 14.0 < 14.0.7 / 14.1 < 14.1.2 (CVE-2021-22250)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Improper authorization in GitLab CE/EE affecting all versions since 13.3 allowed users to view and delete impersonation tokens that administrators created for their account CVE-2021-22250 Note that...
Veritas Enterprise Vault 代码问题漏洞
Veritas Enterprise Vault is an enterprise-grade file protection, archiving automation software from Veritas, USA. A security vulnerability exists in Veritas Enterprise Vault 14.1.2 and prior versions where the Enterprise Vault application starts multiple services that listen for commands from the...
UBUNTU-CVE-2021-22237
Under specialized conditions, GitLab may allow a user with an impersonation token to perform Git actions even if impersonation is disabled. This vulnerability is present in GitLab CE/EE versions before 13.12.9, 14.0.7, 14.1.2...
Unspecified Vulnerability in F5 SSL Orchestrator
F5 SSL Orchestrator is an all-in-one appliance solution for SSL infrastructures from F5, Inc. that provides policy-based dynamic decryption, encryption and traffic control. A security vulnerability exists in F5 SSL Orchestrator versions 15.0.0 through 15.0.1 and 14.0.0 through 14.1.2, which can b...
CVE-2018-13422
TCExam before 14.1.2 has XSS via an ff or xl field...