7 matches found
CVE-2026-2339 RCE in TUBITAK BILGEM's Liderahenk
Missing Authentication for Critical Function vulnerability in TUBITAK BILGEM Software Technologies Research Institute Liderahenk allows Remote Code Inclusion, Privilege Abuse, Command Injection. This issue affects Liderahenk: before 3.5.1...
PT-2022-24704 · WordPress · Easy Form Builder
Name of the Vulnerable Software and Affected Versions: Easy Form Builder WordPress plugin versions prior to 3.4.0 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks. This is possible because some settings are not properly sanitised a...
PeerTube 跨站脚本漏洞
PeerTube is a decentralized video sharing service platform. Peertube has a cross-site scripting vulnerability in versions prior to v3.4.0, which stems from the application's lack of user input data validation and filtering of the data at the input location, and could be used by an attacker to...
Nginx 控制器 安全漏洞
F5 NGINX Controller is a centralized monitoring and management platform for NGINX from F5. The platform supports the management of multiple NGINX instances using a visual interface. A security vulnerability exists in F5 NGINX Controller that stems from the fact that intra-cluster communication do...
Mattermost Desktop App Code Injection Vulnerability
Mattermost Desktop App is a messaging desktop application from Mattermost USA. A code injection vulnerability exists in Mattermost Desktop App versions prior to 3.4.0. The vulnerability stems from a network system or product not properly filtering specific elements of externally entered data duri...
PT-2019-11550
Name of the Vulnerable Software and Affected Versions: Linaro/OP-TEE versions prior to 3.4.0 Description: The issue is related to a buffer overflow in the optee os component, which can lead to code execution in the context of the TEE core kernel. Recommendations: For versions prior to 3.4.0, upda...
Kabona AB WDC Open Redirect Vulnerability
Kabona AB WDC is a web-based SCADA system from the Swedish company Kabona AB. An open redirection vulnerability exists in Kabona AB WDC versions prior to 3.4.0. An attacker can exploit this vulnerability to redirect users to a malicious page...