191 matches found
Quantum DXi6702 安全漏洞
Quantum DXi6702 is a disk backup and deduplication appliance from Quantum Corporation, USA. A security vulnerability exists in the Quantum DXi6702 version 2.3.0.3, which stems from an XML external entity injection issue that could lead to information disclosure...
Security update for rmt-server
This update for rmt-server fixes the following issues: Update to version 2.23 CVE-2025-46727: Fixed Unbounded-Parameter DoS in Rack:QueryParser. bsc1242893 CVE-2025-32441: Fixed a bug where simultaneous rack requests can restore a deleted rack session. bsc1242898 Patch Instructions: To install th...
CVE-2025-52842
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Laundry on Linux, MacOS allows Account Takeover. This issue affects Laundry: 2.3.0...
CVE-2023-52146
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Aaron J 404 Solution.This issue affects 404 Solution: from n/a through 2.33.0...
CVE-2023-0817
Buffer Over-read in GitHub repository gpac/gpac prior to v2.3.0-DEV...
CVE-2022-36577
An issue was discovered in jizhicms v2.3.1. There is a CSRF vulnerability that can add a admin...
WordPress plugin Clearfy Cache 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...
MongoDB Shell 注入漏洞
MongoDB Shell mongosh is an interactive database manipulation tool from the American company MongoDB. It is used to interact with the MongoDB database, execute commands and manipulate data. A security vulnerability exists in MongoDB Shell versions prior to 2.3.9 that stems from control character...
WordPress plugin Kali Forms 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
LightFTP 安全漏洞
LightFTP is a lightweight FTP service by hfiref0x individual developers. A security vulnerability exists in LightFTP version 2.3, which stems from a lack of thread security on the server and can be caused to crash by anomalous data sent by an anonymous user from a remote network...
Beego 安全漏洞
Beego is an open source web framework based on the Go language from Beego Open Source. A security vulnerability exists in Beego version 2.3.3, which stems from the use of MD5 as a hashing algorithm and is vulnerable to collision attacks...
WordPress plugin WRC Pricing Tables 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress plugin Sharkdropship for AliExpress Dropship and Affiliate 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
PT-2024-12311 · Realwebcare · Realwebcare Wrc Pricing Tables
Name of the Vulnerable Software and Affected Versions: Realwebcare WRC Pricing Tables versions 2.3.7 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions...
WordPress plugin Custom CSS, JS & PHP 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin Custom CSS, JS & PHP versi...
WordPress WP Visual Adverts plugin <= 2.3.0 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin WP Visual Adverts versions = 2.3.0...
WordPress UPS Live Rates and Access Points plugin <= 2.3.11 - Missing Authorization to Plugin API key reset vulnerability
Missing Authorization to Plugin API key reset vulnerability discovered by Peter Thaleikis in WordPress Plugin WooCommerce UPS Shipping – Live Rates and Access Points versions = 2.3.11...
TP-LINK TL-WDR5620 安全漏洞
TP-LINK TL-WDR5620 is a wireless router from China P&L TP-LINK. A security vulnerability exists in TP-LINK TL-WDR5620 version 2.3, which originates from a remote code execution vulnerability contained in the httpProcDataSrv function...
Checkmk 安全漏洞
Checkmk is an IT monitoring platform from Checkmk, Inc. A security vulnerability exists in Checkmk versions 2.3.0 and 2.2.0 that stems from incorrect neutralization of inputs and allows an attacker to craft malicious links that could facilitate phishing attacks...
CVE-2024-38642
An improper certificate validation vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow local network users to compromise the security of the system via unspecified vectors. We have already fixed the vulnerability in the following version: QuMagie 2.3.1 a...