CVE-2023-30476 WordPress Blogger Buzz theme <= 1.2.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in sparklewpthemes Blogger Buzz blogger-buzz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Blogger Buzz: from n/a through = 1.2.2...

WordPress plugin Blogger Buzz 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

CVE-2024-10758

CVE-2024-10758 affects code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. The vulnerability is a SQL injection in the index.php area triggered by manipulating the user_name parameter, with remote exploitation indicated. Public disclosures exist (e.g., Exploit-DB and PacketSt...

CVE-2024-10758 code-projects/anirbandutta9 Content Management System/News-Buzz index.php sql injection

A vulnerability, which was classified as critical, was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack...

PT-2024-16521 · Unknown +1 · Code-Projects/Anirbandutta9 Content Management System +1

Name of the Vulnerable Software and Affected Versions: code-projects/anirbandutta9 Content Management System and News-Buzz version 1.0 Description: A critical issue was found in the software, affecting an unknown part of the file /index.php. The manipulation of the user name argument leads to SQL...

CVE-2024-10372

A vulnerability classified as problematic was found in chidiwilliams buzz 1.1.0. This vulnerability affects the function downloadmodel of the file buzz/modelloader.py. The manipulation leads to insecure temporary file. It is possible to launch the attack on the local host. The complexity of an...

CVE-2024-10372

A vulnerability classified as problematic was found in chidiwilliams buzz 1.1.0. This vulnerability affects the function downloadmodel of the file buzz/modelloader.py. The manipulation leads to insecure temporary file. It is possible to launch the attack on the local host. The complexity of an...

CVE-2024-10372

CVE-2024-10372 — chidiwilliams buzz 1.1.0 is affected through the function download_model in buzz/model_loader.py, where misuse creates an insecure temporary file. Attacks can be launched locally with high attack complexity and minimal privileges, and the vulnerability has been publicly disclosed...

CVE-2024-10372 chidiwilliams buzz model_loader.py download_model temp file

A vulnerability classified as problematic was found in chidiwilliams buzz 1.1.0. This vulnerability affects the function downloadmodel of the file buzz/modelloader.py. The manipulation leads to insecure temporary file. It is possible to launch the attack on the local host. The complexity of an...

CVE-2024-10372 chidiwilliams buzz model_loader.py download_model temp file

A vulnerability classified as problematic was found in chidiwilliams buzz 1.1.0. This vulnerability affects the function downloadmodel of the file buzz/modelloader.py. The manipulation leads to insecure temporary file. It is possible to launch the attack on the local host. The complexity of an...

Buzz 安全漏洞

Buzz is a tool by the individual developer Chidi Williams. It is used to transcribe and translate audio offline on a personal computer. A security vulnerability exists in Buzz version 1.1.0, which stems from a function downloadmodel in the file buzz/modelloader.py that results in an insecure...

AccPack Buzz 1.0 Insecure Direct Object Reference

============================================================================================================================================= | Title : AccPack Buzz v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vend...

AccPack Buzz 1.0 SQL Injection

============================================================================================================================================= | Title : AccPack Buzz v1.0 Auth By Pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits ...

AccPack Buzz 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : AccPack Buzz v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64...

buzz-holdings.jp Cross Site Scripting vulnerability OBB-3898936

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

africanwhisper (>=0.2.8 <=0.9.0), agentx-tools (>=0.2.0 <=0.7.1) +74 more potentially affected by CVE-2023-40581 +1 more via yt-dlp (>=2021.9.2 <=2023.7.6)

yt-dlp PYPI version =2021.9.2, =0.2.8, =0.2.0, =2023.3.3, =0.1.0, =0.3.0, =0.0.4, =1.4.0, =0.1.0, =1.0.2, =2.0.0a1, =11.7.1, =2.3.10, =3.0.1 and more Source cves: CVE-2023-40581, CVE-2024-22423 Source advisory: OSV:GHSA-42H4-V29R-42QG...

WordPress Blogger Buzz Theme <= 1.2.2 is vulnerable to Broken Access Control

Software Blogger Buzz Type Theme Vulnerable versions = 1.2.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-30476 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID b1de090398f6 Credits Dave Jong Patchstack Required...

desafio_buzz_woody SQL注入漏洞

desafiobuzzwoody is an application by Bruno Mattoso Gonçalves Personal Developer. A SQL injection vulnerability exists in desafiobuzzwoody that stems from unknown processing that operates to cause SQL injection...

PT-2023-10227 · Unknown · Desafio Buzz Woody

Name of the Vulnerable Software and Affected Versions: desafio buzz woody affected versions not specified Description: A critical issue affects some unknown processing, leading to sql injection. The manipulation with this issue can cause significant problems. There is no information provided abou...

kenyabuzz.com Cross Site Scripting vulnerability OBB-2140196

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...