WWBN AVideo 授权问题漏洞

WWBN AVideo is a video platform building system developed by the WWBN team using PHP. Versions of WWBN AVideo prior to 26.0 contained an authorization vulnerability. This vulnerability stemmed from the standAloneFiles/control.json.php endpoint, which allowed users to control the streamerURL...

SUSE CVE-2024-47748

In the Linux kernel, the following vulnerability has been resolved: vhostvdpa: assign irq bypass producer token correctly We used to call irqbypassunregisterproducer in vhostvdpasetupvqirq which is problematic as we don't know if the token pointer is still valid or not. Actually, we use the...

Apache SeaTunnel Authentication Bypass Vulnerability

Apache SeaTunnel is the United States Apache Apache Foundation, an easy-to-use data integration framework. An authentication bypass vulnerability exists in Apache SeaTunnel version 1.0.0, which stems from the fact that jwt keys are hard-coded in the application and can be exploited by an attacker...

WHMCompleteSolution (WHMCS) 4.x5.x - Multiple Web Vulnerabilities

WHMCompleteSolution WHMCS 4.x5.x - Multiple Web Vulnerabilities Exploit Title: WHMCS v4.x & v5.x - Multiple Web Vulnerabilities Date: 2013-12-10 Exploit Author: ahwak2000 Vendor Homepage: http://whmcs.com/ Version: 4.x , 5.x Tested on: win 7 +------------------+ | Vulnerability |...

Microsoft Yammer SN - oAuth Bypass Token Vulnerability

Document Title: =============== Microsoft Yammer SN - oAuth Bypass Token Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1043 View: http://www.youtube.com/watch?v=SwxWNvmOsU4 Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1003 Microsoft...