43 matches found
TeleMessage 安全漏洞
TeleMessage is a secure and compliant messaging solution for organizations from TeleMessage Israel. A security vulnerability exists in TeleMessage version 2025-05-05 and earlier that stems from relying on the client to perform MD5 hashing and accept the hash as authentication credentials...
wire-webapp 安全漏洞
wire-webapp is an open source application from Wire Swiss. A security vulnerability exists in wire-webapp versions prior to 2025-05-14-production.0, which stems from a failure of the local data deletion functionality, which may result in data being left behind...
TeleMessage archiving backend 安全漏洞
TeleMessage archiving backend is an enterprise-grade communications archiving platform from TeleMessage Israel that supports SMS/voice/social media compliant storage and auditing. A security vulnerability exists in TeleMessage archiving backend version 2025-05-05 and earlier, which stems from API...
Mirai Botnet 安全漏洞
Mirai Botnet is a leaked Mirai source code by Jerry Gamblin personal developer. It is used for research purposes in order to develop IoT and more. A security vulnerability exists in Mirai Botnet version 2024-08-19 and prior versions, which stems from a mishandled simultaneous TCP connection to a...
my-springsecurity-plus SQL Injection Vulnerability
my-springsecurity-plus is an RBAC backend privilege management system based on SpringBoot and SpringSecurity by codermy individual developer. A SQL injection vulnerability exists in my-springsecurity-plus versions prior to 2024.07.03, which stems from vulnerability to SQL injection attacks...
PT-2024-6454 · D Link · D-Link Dns-321 +16
Name of the Vulnerable Software and Affected Versions: D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 versions up to 20240814...
MRV Tech Logging Administration Panel SQL Injection Vulnerability
MRV Tech Logging Administration Panel is a logging administration panel from MRV Tech USA. An SQL injection vulnerability exists in versions prior to MRV Tech Logging Administration Panel 20230915, which stems from the presence of a SQL injection vulnerability...
ARC 跨站脚本漏洞
ARC is a software package for creating and maintaining file archives. A security vulnerability exists in ARC version 2011-12-01 and earlier versions. An attacker could exploit this vulnerability to perform cross-site scripting attacks...
ARC SQL注入漏洞
ARC is a software package for creating and maintaining file archives. A security vulnerability exists in ARC version 2011-12-01 and earlier. An attacker can exploit this vulnerability to perform blind SQL injection via getTriplePatternSQL...
Zoom On-Premise Meeting Connector 安全漏洞
Zoom On-Premise Meeting Connector is a meeting connector from Zoom USA. A security vulnerability exists in versions prior to Zoom On-Premise Meeting Connector MMR 4.8.20220815.130, which stems from the inclusion of incorrect access control, and can be exploited by an attacker to gain access to...
Home__internet 路径遍历漏洞
Homeinternet is a type of web server by the individual developer Umesh Patil. It is used to make specified folders on a computer accessible on a network for quick file uploads and downloads. Homeinternet A security vulnerability exists in versions 2020-08-28 and earlier, which stems from an unsaf...
photo_tag 路径遍历漏洞
phototag is a photo tagging tool by the individual developer of Boring YiBa. A security vulnerability exists in phototag version 2020-08-31 and earlier versions, which stems from an incorrect call to Flask's sendfile function that results in absolute path traversal...
ModelConverter 路径遍历漏洞
ModelConverter is a repository for ml-inory individual developers. It is used to convert models. A security vulnerability exists in ModelConverter version 2021-04-26 and earlier, which stems from an incorrect call to Flask's sendfile function that results in absolute path traversal...
sphere 路径遍历漏洞
sphere is a Python library that implements the Brain Command Interface System by the individual developer Noam Ezekiel. A security vulnerability exists in sphere version 2020-05-31 and earlier, which stems from an incorrect call to Flask's sendfile function that results in absolute path traversal...
CVE-2021-42230
Seowon 130-SLC router all versions as of 2021-09-15 is vulnerable to Remote Code Execution via the queriesCnt parameter...
AIRDROPX BORN Security Vulnerability
AIRDROPX BORN is an API token service from AIRDROPX BORN that can be used to convert and exchange Bitcoin with other network coins. A security vulnerability exists in AIRDROPX BORN version 2019-05-29 and earlier versions, which stems from a misspelling of the name of the constructor function in t...
Lexiglot Cross-Site Scripting Vulnerability
Lexiglot is a translation platform written in PHP by the French software developer Damien Sorel. A cross-site scripting vulnerability exists in Lexiglot 2014-11-20 and earlier versions. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacke...
Lexiglot Operating System Command Injection Vulnerability
Lexiglot is a translation platform written in PHP by the French software developer Damien Sorel. An operating system command injection vulnerability exists in the admin.php script in Lexiglot versions 2014-11-20 and earlier. An attacker can exploit this vulnerability by adding a new item to execu...
Humax Wireless Voice Gateway HGB10R-2 Information Disclosure Vulnerability
The Humax Wireless Voice Gateway HGB10R-2 is a home wireless voice gateway device. The product includes features such as a modem, IP phone and router. A security vulnerability exists in the Humax Wireless Voice Gateway HGB10R-2 version 201608171855. An attacker could exploit the vulnerability to...
Voten.co Arbitrary Code Execution Vulnerability
Voten.co is an open source blogging community system. A security vulnerability exists in the resources/views/layouts/app.blade.php file in versions of Voten.co prior to 2017-08-25. An attacker can exploit the vulnerability to execute arbitrary JavaScript code when a user views the attacker's...