6 matches found
Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / hvloader / nodejs / nodejs18 / openssl (CVE-2023-6129)
The version of cloud-hypervisor-cvm / hvloader / nodejs / nodejs18 / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6129 advisory. - Issue summary: The POLY1305 MAC message authentication...
ABB System 800xA Incorrect Default Permissions (CVE-2020-8473)
Insufficient folder permissions used by system functions in ABB System 800xA Base version 6.1 and earlier allow low privileged users to read, modify, add and delete system and application files. An authenticated attacker who successfully exploit the vulnerabilities could escalate his/her...
FUEL CMS SQL Injection Vulnerability (CNVD-2021-17201)
FUEL CMS is a content management system based on CodeIgniter. A SQL injection vulnerability exists in the 'fuelreplaceid' parameter in pages/replace/1 in FUEL CMS 1.4.8. An attacker could use this vulnerability to corrupt the application, access or modify data, or exploit a potential vulnerabilit...
Joomla! Guru Pro SQL Injection Vulnerability
Joomla! is an open source content management system CMS that provides RSS feeds, site search, etc. Guru Pro is one of the plugins that makes it easy to create online courses. An SQL injection vulnerability exists in Joomla! An attacker could use this vulnerability to corrupt the application, acce...
My Projects SQL Injection Vulnerability
Joomla! is an open source Content Management System CMS developed by the OpenSourceMatters team in the U.S. The system offers RSS feeds, site search, and more.My Projects is one of those simple components that allows you to display your work on your website. A SQL injection vulnerability exists i...
HP OpenView Communication Broker Arbitrary File Deletion (HPSBMU02691)
According to its self-reported version, the version of the HP OpenView Communication Broker service running on the remote host has a vulnerability that could allow an unauthenticated attacker to delete arbitrary files on the system. Successful exploits will result in a denial of service condition...