PT-2026-29368

Name of the Vulnerable Software and Affected Versions D-Link DNS-120 D-Link DNR-202L D-Link DNS-315L D-Link DNS-320 D-Link DNS-320L D-Link DNS-320LW D-Link DNS-321 D-Link DNR-322L D-Link DNS-323 D-Link DNS-325 D-Link DNS-326 D-Link DNS-327L D-Link DNR-326 D-Link DNS-340L D-Link DNS-343 D-Link...

EUVD-2020-22922

Malware in sbrugna...

MAL-2024-7503 Malicious code in sap-addgroup (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f05a6e7a65d3a1fab7c876dd58f88faac4fb4445780fbeba2e6a15b7e1f0c6f7 The OpenSSF Package Analysis project identified 'sap-addgroup' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

Malicious code in sap-addgroup (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f05a6e7a65d3a1fab7c876dd58f88faac4fb4445780fbeba2e6a15b7e1f0c6f7 The OpenSSF Package Analysis project identified 'sap-addgroup' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

CVE-2020-21130

Cross Site Scripting XSS vulnerability in HisiPHP 2.0.8 via the group name in addgroup.html...

HisiPHP 跨站脚本漏洞

HisiPHP is a ThinkPHP and Layui based on the development of a common back-end management framework open source and free , the default integration of permissions management , module management , plug-in management , hooks management , database management and other commonly used features to...

CVE-2020-35244

Flamingo aka FlamingoIM through 2020-09-29 has a SQL injection vulnerability in UserManager::addGroup...

CVE-2020-35244

The CVE-2020-35244 entry identifies Flamingo (aka FlamingoIM) as affected through 2020-09-29 due to a SQL injection in UserManager::addGroup. The connected records confirm the component and the underlying flaw (SQL injection), but do not provide a concrete list of affected versions, affected conf...

CVE-2020-35244

Flamingo aka FlamingoIM through 2020-09-29 has a SQL injection vulnerability in UserManager::addGroup...

Blizmax Flamingoim SQL Injection Vulnerability

Blizmax Flamingoim is a high-performance, lightweight, open source instant messaging software from the individual developers of Blizmax. A SQL injection vulnerability exists in Blizmax Flamingoim version 2020-09-29 and prior versions, which stems from the validation of externally entered SQL...

Cross site scripting

In admin\addgroup.php in CMS Made Simple 2.1.6, when adding a user group, there is no XSS filtering, resulting in storage-type XSS generation, via the description parameter in an addgroup action...

CVE-2017-9668

In admin\addgroup.php in CMS Made Simple 2.1.6, when adding a user group, there is no XSS filtering, resulting in storage-type XSS generation, via the description parameter in an addgroup action...

CVE-2017-9668

CMS Made Simple

hplip security, bug fix and enhancement update

3.12.4-4 - Applied patch to fix CVE-2013-0200, temporary file vulnerability bug 902163. - Fixed hpijs-marker-supply patch. 3.12.4-3 - Make 'hp-check' check for hpaio set-up correctly bug 683007. 3.12.4-2 - Added more fixes from Fedora bug 731900. 3.12.4-1 - Re-based to 3.12.4 with fixes from Fedo...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in GoAhead Webserver 2.18 allow remote attackers to inject arbitrary web script or HTML via 1 the group parameter to goform/AddGroup, related to addgroup.asp; 2 the url parameter to goform/AddAccessLimit, related to addlimit.asp; or the 3 user aka...

GoAhead Webserver multiple stored XSS vulnerabilities

Overview GoAhead Webserver 2.18 and possibly previous or newer versions, are vulnerable to multiple stored and reflective cross site scripting XSS vulnerabilities. Description GoAhead Webserver software fails to sanitize POST requests sent to the multiple functions. As a result, stored and...

Code injection

NETxAutomation NETxEIB OPC Server before 3.0.1300 does not properly validate OLE for Process Control OPC server handles, which allows attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors involving the 1 IOPCSyncIO::Read, 2 IOPCSyncIO::Write, 3...