4 matches found
CVE-2025-11022
Cross-Site Request Forgery CSRF vulnerability in Personal Project Panilux allows Cross Site Request Forgery. This CSRF vulnerability resulting in Command Injection has been identified. This issue affects Panilux: before v.0.10.0. NOTE: The vendor was contacted and responded that they deny...
xrdp security vulnerability
xrdp is an open source remote desktop protocol server from neutrinolabs open source. A security vulnerability exists in xrdp versions prior to 0.10.0 that stems from an invalid limit on the configuration parameter for the maximum number of login attempts, allowing an attacker to make unlimited...
PT-2023-16017 · Unknown · Usememos/Memos
Name of the Vulnerable Software and Affected Versions: usememos/memos versions prior to 0.10.0 Description: The issue is related to stored Cross-site Scripting XSS in the GitHub repository usememos/memos. This type of attack involves an attacker injecting malicious scripts into a website, which a...
PT-2023-16020 · Unknown · Usememos/Memos
Name of the Vulnerable Software and Affected Versions: usememos/memos versions prior to 0.10.0 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input without proper validation, allowing an attacker to inject malicious scripts. Th...