CVE-2023-25040

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Vova Anokhin WordPress Shortcodes Plugin — Shortcodes Ultimate plugin = 5.12.6 versions...

EUVD-2023-27886

Malicious code in bioql PyPI...

WordPress plugin Shortcodes Ultimate 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

CVE-2023-23800

Server-Side Request Forgery SSRF vulnerability in Vova Anokhin WP Shortcodes Plugin — Shortcodes Ultimate.This issue affects WP Shortcodes Plugin — Shortcodes Ultimate: from n/a through 5.12.6...

Zoom Rooms 安全漏洞

Zoom Rooms is a software-based conferencing system from Zoom USA. A system that allows web conferencing on fixed endpoints, similar to traditional video conferencing systems. A security vulnerability exists in Zoom Rooms Installer for Windows versions prior to 5.12.6. An attacker can exploit the...

PT-2023-1100 · Zoom · Zoom Rooms Installer For Windows

Name of the Vulnerable Software and Affected Versions: Zoom Rooms Installer for Windows versions prior to 5.12.6 Description: The issue is related to a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability during the install process to escalate the...

CVE-2022-28768

The Zoom Client for Meetings Installer for macOS Standard and for IT Admin before version 5.12.6 contains a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability during the install process to escalate their privileges to root...

PT-2022-5832 · Zoom · Zoom Rooms Installer For Windows

Name of the Vulnerable Software and Affected Versions: Zoom Rooms Installer for Windows versions prior to 5.12.6 Description: The issue is related to a local privilege escalation. A local low-privileged user could exploit this during the install process to escalate their privileges to the SYSTEM...

Information disclosure

The Zoom Client for Meetings for Android, iOS, Linux, macOS, and Windows before version 5.12.6 is susceptible to a local information exposure vulnerability. A failure to clear data from a local SQL database after a meeting ends and the usage of an insufficiently secure per-device key encrypting...

Mirasys DVMS Workstation Gateway Path Traversal Vulnerability

Mirasys DVMS Worlstation is a surveillance video management system from the Finnish company Mirasys, of which Gateway is a gateway. A path traversal vulnerability exists in Mirasys DVMS Workstation 5.12.6 and earlier versions of Gateway. A remote attacker can use the Web Client webserver to...