itsourcecode Restaurant Management System 注入漏洞

itsourcecode Restaurant Management System is itsourcecode open source a restaurant management system . An injection vulnerability exists in version 1.0 of itsourcecode Restaurant Management System, which is caused by incorrect manipulation of the parameter team in the file /admin/teamupdate.php,...

CVE-2024-52314

A data.all admin team member who has access to the customer-owned AWS Account where data.all is deployed may be able to extract user data from data.all application logs in data.all via CloudWatch log scanning for particular operations that interact with customer producer teams data...

CVE-2024-52314

CVE-2024-52314 relates to data.all. Multiple connected sources describe a vulnerable scenario where a data.all admin team member with access to a customer‑owned AWS account can potentially extract user data from data.all application logs by scanning CloudWatch logs for operations interacting with...

postfixadmin -- Multiple Vulnerabilities

The Postfix Admin Team reports: Multiple XSS vulnerabilities exist: - XSS with $GETdomain in templates/menu.php and edit-vacation - XSS in some create-domain input fields - XSS in create-alias and edit-alias error message - XSS by values stored in the database in fetchmail list view, list-domain...

PT-2007-1285 · Robin De Graff · Robin De Graff Somery

Name of the Vulnerable Software and Affected Versions: Robin de Graff Somery version 0.4.4 Description: A remote file inclusion issue in upload/admin/team.php allows remote attackers to potentially execute arbitrary PHP code via a URL in the checkauth parameter. However, it's noted that the...