Improper String Comparison

erik-dubbelboer/php-redis-admin is vulnerable to improper string comparison. Improper use of operator in string comparison in authHttpDigest function of the file includes/login.inc.php allows an attacker to cause a magic hash attack via the response parameter...

CVE-2022-25904

All versions of package safe-eval are vulnerable to Prototype Pollution which allows an attacker to add or modify properties of the Object.prototype.Consolidate when using the function safeEval. This is because the function uses vm variable, leading an attacker to modify properties of the...

CVE-2022-46424

Affected product: Netgear XWN5001 Powerline 500 WiFi Access Point. Vulnerability: exploitable firmware modification allowing a MITM attacker to modify a user-uploaded firmware image and bypass CRC checks, enabling arbitrary code execution or Denial of Service. Root cause/condition: vulnerable fir...

Cross site scripting

The Flowplayer Video Player WordPress plugin before 1.0.5 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...

Cross site request forgery (csrf)

The Popup Manager WordPress plugin through 1.6.6 does not have authorisation and CSRF check when creating/updating popups, and is missing sanitisation as well as escaping, which could allow unauthenticated attackers to create arbitrary popups and add Stored XSS payloads as well...

Microsoft Office Graphics remote code execution vulnerability (CNVD-2022-89423)

Microsoft Office is an office software suite product of the United States Microsoft Corporation Microsoft. Common components of the product include Word, Excel, Access, Powerpoint, FrontPage, etc. A remote code execution vulnerability exists in Microsoft Office Graphics. An attacker could exploit...

Microsoft Office Graphics Remote Code Execution Vulnerability (CNVD-2022-89425)

Microsoft Graphics Component is a graphics driver component of Microsoft Corporation USA. A remote code execution vulnerability exists in Microsoft Office Graphics. An attacker could exploit this vulnerability to execute code on the target host...

Cross site scripting

A vulnerability was found in Shoplazza LifeStyle 1.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/api/theme-edit/ of the component Product Handler. The manipulation of the argument Subheading/Heading/Text/Button Text/Label leads to cross...

Man-in-the-Middle (MitM)

org.apache.bookkeeper:bookkeeper-server is vulnerable to man-in-the-middleMitM attack. The vulnerability is due to the connection not terminating when TLS hostname verification fails which allows an attacker to position themselves in between the user and the remote server...

Winning NFT owner/admin can rug pull attack or DoS attack on winner by removing the winning NFT.

Lines of code Vulnerability details Impact Given the current logic, it is possible to call the redraw method even after recoverTimelock has passed. If the owner does so, the contract will select a new winner for the winning NFT. But it will be up to the owner to give as much time to the winner to...

Alist vulnerable to Path Traversal

Alist v3.4.0 is vulnerable to Directory Traversal,...

PYSEC-2022-43060

The Apache Bookkeeper Java Client before 4.14.6 and also 4.15.0 does not close the connection to the bookkeeper server when TLS hostname verification fails. This leaves the bookkeeper client vulnerable to a man in the middle attack. The problem affects BookKeeper client prior to versions 4.14.6 a...

CVE-2022-23507 Light client verification not taking into account chain ID

Tendermint is a high-performance blockchain consensus engine for Byzantine fault tolerant applications. Versions prior to 0.28.0 contain a potential attack via Improper Verification of Cryptographic Signature, affecting anyone using the tendermint-light-client and related packages to perform ligh...

WP CSV to Database <= 2.6 - CSRF

The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

IBM DB2 Cross-Site Request Forgery Vulnerability (CNVD-2023-00813)

IBM DB2 is a relational database management system from International Business Machines IBM, Inc. The system is implemented in UNIX, Linux, IBMi, z/OS, and Windows server versions.IBM DB2 is vulnerable to cross-site request forgery, which can be exploited by an attacker to perform malicious and...

TYPO3-EXT-SA-2022-018: Multiple vulnerabilities in extension "Master-Quiz" (fp_masterquiz)

An issue was discovered in the fpmasterquiz aka Master-Quiz extension before 2.2.1, and 3.x before 3.5.1, for TYPO3. An attacker can continue the quiz of a different user. In doing so, the attacker can view that user's answers and modify those answers...

CVE-2022-47409

CVE-2022-47409 affects the TYPO3 fp_newsletter extension. The issue arises in the deleteAction, where attackers can unsubscribe everyone by manipulating series of subscription UIDs. Affected versions include: pre-1.1.1; 1.2.0; 2.x before 2.1.2; 2.2.1 through 2.4.0; and 3.x before 3.2.6. Impact is...

Input validation

Due to improper input sanitization in SAP Sourcing and SAP Contract Lifecycle Management - version 1100, an attacker can redirect a user to a malicious website. In order to perform this attack, the attacker sends an email to the victim with a manipulated link that appears to be a legitimate SAP...

Cross-Site Scripting (XSS)

phpmyfaq is vulnerable to cross-site scripting. The vulnerability is due to index.php missing safe conversion to HTML entities which allows an attacker to inject and execute malicious JavaScript...

LinkedIn: Delete any LinkedIn comment on learning API of other users

Vulnerability description not provided...