CVE-2024-53728

Cross-Site Request Forgery CSRF vulnerability in Oliver Lindner Protect Your Content protect-your-content allows Stored XSS.This issue affects Protect Your Content: from n/a through = 1.0.2...

CVE-2024-53728 WordPress Protect Your Content plugin <= 1.0.2 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Oliver Lindner Protect Your Content protect-your-content allows Stored XSS.This issue affects Protect Your Content: from n/a through = 1.0.2...

CVE-2024-53728

CVE-2024-53728 describes a CSRF to Stored XSS vulnerability in WordPress Protect Your Content (SEO-Küche Internet Marketing GmbH & Co. KG) affecting versions up to 1.0.2. Public sources (NVD/RH/CVE/CVE List) confirm the issue as CSRF leading to Stored XSS with a base CVSS v3.1 score of 7.1 (HIGH)...

CVE-2024-52043 User enumeration in HubHub

Generation of Error Message Containing Sensitive Information in HumHub GmbH & Co. KG - HumHub on Linux allows: Excavation user enumeration.This issue affects all released HumHub versions: through 1.16.2...

CVE-2022-36536

An issue in the component postapplogin.php of Super Flexible Software GmbH & Co. KG Syncovery 9 for Linux v9.47x and below allows attackers to escalate privileges via creating crafted session tokens...

Cross site scripting

Super Flexible Software GmbH & Co. KG Syncovery 9 for Linux v9.47x and below was discovered to contain a cross-site scripting XSS vulnerability...

CVE-2022-36536

CVE-2022-36536 affects Syncovery for Linux (Super Flexible Software) in the post_applogin.php component. Multiple sources (NVD, Red Hat, CVE lists) describe an insecure session token generation that enables privilege escalation via crafted tokens in v9.47x and earlier. The published CVSS 3.1 base...

CVE-2022-36536

An issue in the component postapplogin.php of Super Flexible Software GmbH & Co. KG Syncovery 9 for Linux v9.47x and below allows attackers to escalate privileges via creating crafted session tokens...

CVE-2020-12526

Affected software: Beckhoff TwinCAT OPC UA Server (versions up to 2.3.0.12) and IPC Diagnostics UA Server (versions up to 3.1.0.1). Issue: denial-of-service vulnerability where several specially crafted requests to the running OPC UA server can cause the server to stop responding to any client, w...

CVE-2020-12526 BECKHOFF: DoS-Vulnerability for TwinCAT OPC UA Server and IPC Diagnostics UA Server

TwinCAT OPC UA Server in versions up to 2.3.0.12 and IPC Diagnostics UA Server in versions up to 3.1.0.1 from Beckhoff Automation GmbH & Co. KG are vulnerable to denial of service attacks. The attacker needs to send several specifically crafted requests to the running OPC UA server. After some of...

CommSy 8.6.5 - SQL injection

CommSy 8.6.5 - SQL injection Title: ====== CommSy 8.6.5 - SQL injection Researcher: =========== Jens Regel, Schneider & Wulf EDV-Beratung GmbH & Co. KG CVE-ID: ======= CVE-2019-11880 Timeline: ========= 2019-04-15 Vulnerability discovered 2019-04-15 Asked for security contact and PGP key 2019-04-...

CommSy 8.6.5 SQL Injection

Title: ====== CommSy 8.6.5 - SQL injection Researcher: =========== Jens Regel, Schneider & Wulf EDV-Beratung GmbH & Co. KG CVE-ID: ======= CVE-2019-11880 Timeline: ========= 2019-04-15 Vulnerability discovered 2019-04-15 Asked for security contact and PGP key 2019-04-16 Send details to the vendor...

CommSy 8.6.5 - SQL injection

Title: ====== CommSy 8.6.5 - SQL injection Researcher: =========== Jens Regel, Schneider & Wulf EDV-Beratung GmbH & Co. KG CVE-ID: ======= CVE-2019-11880 Timeline: ========= 2019-04-15 Vulnerability discovered 2019-04-15 Asked for security contact and PGP key 2019-04-16 Send details to the vendor...

Art Systems FluidDraw P5/S5 5.3n Binary Planting Arbitrary Code Execution

Summary Fluiddraw enables the creation of electrical and pneumatic circuit diagrams. The tool makes it easier to plan complete systems and implement individual components. Users access the Festo catalogue and their own imported databases and can thus benefit from evaluation functions and created...

Ashampoo Burning Studio Elements 10.0.9 - &#039;.ashprj&#039; Heap Overflow

!/usr/bin/perl Ashampoo Burning Studio Elements 10.0.9 .ashprj Heap Overflow Vulnerability Vendor: Ashampoo GmbH & Co. KG Product web page: http://www.ashampoo.com Affected version: 10.0.9 Summary: Ashampoo Burning Studio Elements offers you everything you need to burn movies, music and data - fa...

lama-rfi.txt

+----------------------------------------------------------------------------+ Lama Software kostenlos Remote file include Scripts : Lama Software kostenlos Discovered By : QTRinux Scripts site : http://www.lama-software.de/ Thanks To : Tryag.cc cold z3ro HackTeach.org AlQaTaRi Mr.sh4r3s POISON...