CVE-2026-24095

Improper permission enforcement in Checkmk versions 2.4.0 before 2.4.0p21, 2.3.0 before 2.3.0p43, and 2.2.0 EOL allows users with the "Use WATO" permission to access the "Analyze configuration" page by directly navigating to its URL, bypassing the intended "Access analyze configuration" permissio...

MiracleLinux 3 : samba-3.0.33-3.40.0.1.AXS3 (AXSA:2014-583:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-583:01 advisory. Description : Samba is the suite of programs by which a lot of PC-related machines share files, printers, and other information such as lists of...

ROS-20251117-02

The vulnerability of the LDAP web-based administration tool phpLDAPAPadmin is related to the lack of neutralization of special elements that can be interpreted as a command when opening a file in a spreadsheet editor. spreadsheet editor. Exploitation of the vulnerability could allow an attacker...

EUVD-2000-0922

Malware in sbrugna...

EUVD-2000-0926

Malware in sbrugna...

EUVD-2013-0248

Malware in sbrugna...

EUVD-2000-0923

Malware in sbrugna...

EUVD-2013-0247

Malware in sbrugna...

EUVD-2000-0925

Malware in sbrugna...

EUVD-2015-2079

Malware in sbrugna...

EUVD-2000-0924

Malware in sbrugna...

EUVD-2015-2080

Malware in sbrugna...

EUVD-2015-2081

Malware in sbrugna...

EUVD-2011-2675

Malware in sbrugna...

Security Bulletin: Security vulnerability discovered in IBM Security Directory Server and IBM Security Verify Directory (CVE-2022-32754)

Summary IBM Security Verify Directory and IBM Security Directory Server addressed a cross-site scripting vulnerability in the web administration tool. Vulnerability Details CVEID:CVE-2022-32754 DESCRIPTION: IBM Security Verify Directory 10.0.0 is vulnerable to cross-site scripting. This...

SUSE CVE-2011-2694

Cross-site scripting XSS vulnerability in the chgpasswd function in web/swat.c in the Samba Web Administration Tool SWAT in Samba 3.x before 3.5.10 allows remote authenticated administrators to inject arbitrary web script or HTML via the username parameter to the passwd program aka the user field...

SUSE CVE-2013-0213

The Samba Web Administration Tool SWAT in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to conduct clickjacking attacks via a 1 FRAME or 2 IFRAME element...

Cross-Site Scripting (XSS)

samba is vulnerable to cross-site scripting XSS. A cross-site scripting XSS flaw was found in the password change page of the Samba Web Administration Tool SWAT. If a remote attacker could trick a user, who was logged into the SWAT interface, into visiting a specially-crafted URL, it would lead t...

Exploit for OS Command Injection in Webmin

It is an exploit module for CVE-2019-15107, a vulnerability in Webmin. The target product/service is Webmin, a web-based interface for system administration. The vulnerability class/vector is a remote command execution RCE vulnerability. The probable entry point is the "passwordchange.cgi" script...

FaceSentry Access Control System 6.4.8 - Remote Command Injection

FaceSentry Access Control System 6.4.8 Remote Command Injection Vendor: iWT Ltd. Product web page: http://www.iwt.com.hk Affected version: Firmware 6.4.8 build 264 Algorithm A16 Firmware 5.7.2 build 568 Algorithm A14 Firmware 5.7.0 build 539 Algorithm A14 Summary: FaceSentry 5AN is a revolutionar...