WordPress Car Zone theme <= 3.7 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Car Zone versions = 3.7...

WordPress WooCommerce Vehicle Parts Finder plugin <= 3.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 in WordPress Plugin WooCommerce Vehicle Parts Finder versions = 3.7...

WordPress plugin WordPress Auction Plugin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

CVE-2023-41971

An Improper Link Resolution Before File Access 'Link Following' vulnerability in Zscaler Client Connector on Windows allows a system file to be overwritten.This issue affects Client Connector on Windows: before 3.7...

JeeWMS Security Vulnerabilities

JeeWMS is JeeWMS open source a JAVA-based warehouse management system . JeeWMS v.3.7 and earlier versions of a security vulnerability , the vulnerability stems from allowing remote attackers to obtain sensitive information through the cgformTemplateController component...

Canon Multiple Products Buffer Error Vulnerability

Canon Color imageCLASS is a series of printers from Canon Japan. A security vulnerability exists in several Canon products. The vulnerability can be exploited by an attacker to execute arbitrary code. The following products and versions are affected: Satera LBP670C Series, Satera MF750C Series...

Archive 安全漏洞

Archive is a Dart library for encoding and decoding various archive and compression formats such as Zip, Tar, GZip, ZLib and BZip2. A security vulnerability exists in Archive version v3.3.7, which originates from a vulnerability that allows an attacker to spoof zip filenames, resulting in...

LexisNexis Firco Compliance Link 跨站请求伪造漏洞

LexisNexis Firco Compliance Link is an application from LexisNexis, Inc. for automating the online compliance process. A security vulnerability exists in LexisNexis Firco Compliance Link version 3.7 that stems from the presence of SRF...

StackStorm 安全漏洞

StackStorm is an event-driven automation platform. The platform is used for automated remediation, security response, troubleshooting and program deployment functions. A security vulnerability exists in StackStorm version 3.7.0, which stems from improper Key-Value RBAC access control that fails t...

Minor update (4) for Vivaldi Desktop Browser 3.7

Download Vivaldi The following improvements were made since the third 3.7 stable, minor update: ChromiumSecurity Backported patch for issue under active attack CVE-2021-21224 Main photo byJason Hafso...

UBUNTU-CVE-2018-14632

An out of bound write can occur when patching an Openshift object using the 'oc patch' functionality in OpenShift Container Platform before 3.7. An attacker can use this flaw to cause a denial of service attack on the Openshift master api service which provides cluster management...

Knight CMS Talent System SQL Injection Vulnerability

Knight CMS Talent System is a professional talent system based on PHP+MYSQL. Knight CMS Talent System v3.7 exists SQL injection vulnerability, due to the variable $id filtering was omitted to cause injection, attackers use the vulnerability to obtain sensitive information...