43 matches found
EUVD-2026-33550
An incorrect handling of permissions in OTRS External Interface and the ConfigItem List module allows an authenticated customer to query the system for CI information. Please note that CMDB has to be anabled and CustomerGroupSupport has to be used to be affected. This issue affects OTRS: 7.0.X...
CVE-2025-55307
An issue was discovered in Foxit PDF and Editor for Windows before 13.2 and 2025 before 2025.2. Opening a malicious PDF containing a crafted JavaScript call to search.query with a crafted cDIPath parameter e.g., "/" may cause an out-of-bounds read in internal path-parsing logic, potentially leadi...
OTRS 安全漏洞
OTRS is a service management solution from OTRS Germany. A security vulnerability exists in OTRS that stems from an external interface that allows the inference of user account presence, which could lead to the identification of valid email addresses. The following versions are affected: version...
Usermin Cross-Site Scripting Vulnerability
Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A cross-site scripting vulnerability exists in Usermin version 2.000, which stems from a stored cross-site scripting XSS vulnerability in the cron jobs tab of the...
Webmin Usermin Cross-Site Scripting Vulnerability
Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A cross-site scripting vulnerability exists in Usermin version 2.000, which stems from a stored cross-site scripting XSS vulnerability in the MIME type program tab...
PT-2023-27833 · Usermin · Usermin
Name of the Vulnerable Software and Affected Versions: Usermin version 2.000 Description: A Stored Cross-Site Scripting XSS issue exists in the MIME type programs tab, allowing remote attackers to inject arbitrary web script or HTML via the description field when creating a new MIME type program...
Webmin Usermin Cross-Site Scripting Vulnerability
Webmin Usermin is a web-based interface from Webmin Inc. It is used for webmail, password change, mail filters, fetchmail, and more. A cross-site scripting vulnerability exists in Usermin version 2.000, which stems from a stored cross-site scripting XSS vulnerability in the MIME type program tab...
PT-2023-27837 · Usermin · Usermin
Name of the Vulnerable Software and Affected Versions: Usermin version 2.000 Description: Multiple stored cross-site scripting XSS vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the key comment to different pages, including public key details, Export key, sign...
yt-dlp 信息泄露漏洞
yt-dlp is based on the youtube-dl branch of the now-inactive youtube-dlc. An information disclosure vulnerability previously existed in yt-dlp version 2023.07.06, which stemmed from an external downloader used by the app that could leak cookies when HTTP redirected to other hosts...
NOKIA VitalSuite SPM SQL注入漏洞
NOKIA VitalSuite SPM is a multi-vendor, multi-application performance management solution from Nokia Finland. A security vulnerability exists in NOKIA VitalSuite SPM version 2020. An attacker exploited the vulnerability to perform SQL injection via UserName...
PT-2021-19994 · Unknown · Drawings Sdk
Name of the Vulnerable Software and Affected Versions: Drawings SDK versions prior to 2022.4 Description: An out-of-bounds read issue exists within the parsing of DXF files in the Drawings SDK, resulting from the lack of proper validation of user-supplied data. This can result in a read past the...
Microsoft Windows WalletService Access Control Error Vulnerability
Microsoft Windows WalletService is an application from Microsoft Corporation USA. hosts objects used by the Wallet Client. An access control error vulnerability exists in Microsoft Windows WalletService. The following products and versions are affected:Windows 10 Version 1607 for x64-based...
2021-10 Cumulative Update Preview for Windows 10 Version 2004 for x64-based Systems (KB5006738)
2021-10 Cumulative Update Preview for Windows 10 Version 2004 for x64-based Systems KB5006738...
Update for Removal of Adobe Flash Player for Windows 10 Version 2004 for x64-based systems (KB4577586)
Update for Removal of Adobe Flash Player for Windows 10 Version 2004 for x64-based systems KB4577586...
2021-02 Cumulative Update Preview for Windows 10 Version 2004 for ARM64-based Systems (KB4601382)
2021-02 Cumulative Update Preview for Windows 10 Version 2004 for ARM64-based Systems KB4601382...
2021-06 Cumulative Update for Windows 10 Version 2004 for ARM64-based Systems (KB5004476)
2021-06 Cumulative Update for Windows 10 Version 2004 for ARM64-based Systems KB5004476...
2021-08 Cumulative Update Preview for Windows 10 Version 2004 for ARM64-based Systems (KB5005101)
2021-08 Cumulative Update Preview for Windows 10 Version 2004 for ARM64-based Systems KB5005101...
2021-06 Cumulative Update for Windows 10 Version 2004 for ARM64-based Systems (KB5004760)
2021-06 Cumulative Update for Windows 10 Version 2004 for ARM64-based Systems KB5004760...
2021-08 Cumulative Update Preview for Windows 10 Version 2004 for x64-based Systems (KB5005101)
2021-08 Cumulative Update Preview for Windows 10 Version 2004 for x64-based Systems KB5005101...
2021-11 Cumulative Update Preview for Windows 10 Version 2004 for x64-based Systems (KB5007253)
2021-11 Cumulative Update Preview for Windows 10 Version 2004 for x64-based Systems KB5007253...