7 matches found
CVE-2026-27508
CVE-2026-27508 affects Smoothwall Express versions prior to 3.1 Update 13. The issue is a reflected XSS in the /redirect.cgi endpoint caused by improper sanitation of the url parameter. Attackers can craft URLs containing javascript: schemes that execute arbitrary JavaScript in a victim’s browser...
MLflow 代码问题漏洞
MLflow is an open source platform from MLflow that simplifies machine learning development, including tracking experiments, packaging code into repeatable runs, and sharing and deploying models. A code issue vulnerability exists in MLflow versions prior to 3.1.0 that stems from a missing...
GRAU DATA Blocky 安全漏洞
GRAU DATA Blocky is a ransomware protection software from GRAU DATA, Germany. A security vulnerability exists in GRAU DATA Blocky versions prior to 3.1 that stems from storing passwords in an encrypted manner, allowing an attacker to steal a user's Blocky password and impersonate a local user...
CVE-2022-32256
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.1. The affected application consists of a web service that lacks proper access control for some of the endpoints. This could lead to low privileged users accessing privileged information...
DELL Dell Wyse Management Suite 跨站脚本漏洞
Wyse Management Suite is a next-generation management solution that enables you to centrally configure, monitor, manage and optimize Wyse thin clients. A stored cross-site scripting vulnerability exists in versions prior to Wyse Management Suite 3.1. An attacker could exploit this vulnerability t...
Siemens TeleControl Server Basic Authentication Bypass Vulnerability
Siemens TeleControl Server Basic is a remote control system for Siemens equipment from Siemens, Germany. A security vulnerability exists in Siemens TeleControl Server Basic versions prior to 3.1. An attacker could use this vulnerability to bypass the identity access mechanism and read restricted...
PT-2017-3250 · Gnu +1 · Libffi +1
Name of the Vulnerable Software and Affected Versions: libffi versions prior to 3.1 Description: The issue is caused by libffi requesting an executable stack, allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. This is due to a buffer overflow operation in...