69 matches found
CVE-2019-7197
A stored cross-site scripting XSS vulnerability has been reported to affect multiple versions of QTS. If exploited, this vulnerability may allow an attacker to inject and execute scripts on the administrator console. To fix this vulnerability, QNAP recommend updating QTS to the latest version...
EUVD-2011-0600
Malware in sbrugna...
EUVD-2020-19356
Malware in sbrugna...
EUVD-2019-9491
Malware in sbrugna...
EUVD-2020-11323
Malware in sbrugna...
EUVD-2015-8041
Malware in sbrugna...
EUVD-2016-6695
Malware in sbrugna...
EUVD-2025-17692
Malicious code in bioql PyPI...
CVE-2025-46612
The Panel Designer dashboard in Airleader Master and Easy before 6.36 allows remote attackers to execute arbitrary commands via a wizard/workspace.jsp unrestricted file upload. To exploit this, the attacker must login to the administrator console default credentials are weak and easily guessable...
CVE-2025-46612
The Panel Designer dashboard in Airleader Master and Easy before 6.36 allows remote attackers to execute arbitrary commands via a wizard/workspace.jsp unrestricted file upload. To exploit this, the attacker must login to the administrator console default credentials are weak and easily guessable...
PT-2025-24659 · Unknown · Airleader Easy +1
Name of the Vulnerable Software and Affected Versions: Airleader Master and Easy versions prior to 6.36 Description: The issue allows remote attackers to execute arbitrary commands via an unrestricted file upload in the Panel Designer dashboard. This can be exploited by logging into the...
CVE-2020-19419
Incorrect Access Control in Emerson Smart Wireless Gateway 1420 4.6.59 allows remote attackers to obtain sensitive device information from the administrator console without authentication...
CVE-2025-27704
There is a cross-site scripting vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.53. Attackers with system administrator permissions can interfere with another system administrator’s use of the management console when the second administrator...
CVE-2019-3638
Reflected Cross Site Scripting vulnerability in Administrators web console in McAfee Web Gateway MWG 7.8.x prior to 7.8.2.13 allows remote attackers to collect sensitive information or execute commands with the MWG administrator's credentials via tricking the administrator to click on a carefully...
CVE-2020-26820
SAP NetWeaver AS JAVA, versions - 7.20, 7.30, 7.31, 7.40, 7.50, allows an attacker who is authenticated as an administrator to use the administrator console, to expose unauthenticated access to the file system and upload a malicious file. The attacker or another user can then use a separate...
PT-2024-13067 · Clarisa · Filemaker Server
Name of the Vulnerable Software and Affected Versions: FileMaker Server versions prior to 20.3.1 Description: A privilege escalation issue existed in FileMaker Server, potentially exposing sensitive information to front-end websites when signed in to the Admin Console with an administrator role...
Update Rollup 1 for System Center 2022 Virtual Machine Manager
Update Rollup 1 for System Center 2022 Virtual Machine Manager Applies to Microsoft System Center 2022 Virtual Machine ManagerIntroduction This article describes the issues that are fixed in System Center Virtual Machine Manager 2022 UR1 release. There are two updates that are available for Virtu...
Veeam Backup & Replication server does not have Virtual Machine Manager Administrator Console installed.
Challenge When attempting to add Microsoft Hyper-V Servers to Veeam Backup & Replication the following error is displayed: Veeam Backup & Replication server does not have Virtual Machine Manager Administrator Console installed. If you installed VMM Console while Veeam Backup & Replication UI was...
Adobe ColdFusion Directory Traversal Vulnerability
A directory traversal vulnerability exists in the administrator console in Adobe ColdFusion which allows remote attackers to read arbitrary files...
ZZCMS Access Control Error Vulnerability
ZZCMS is a content management system CMS from the Zzcms team in China. ZZCMS suffers from an access control error vulnerability that stems from an incorrect access control vulnerability in zzcms via admin.php, which can be exploited by an attacker to directly access the administrator console afte...