Security Bulletin: IBM Content Navigator is vulnerable to a Code Inject Exploit due to Daeja ViewOne Virtual (CVE-2023-40684)

Summary Daeja ViewOne Virtual is used by IBM Content Navigator as part of the document viewer. CVE-2023-40684. Vulnerability Details CVEID:CVE-2023-40684 DESCRIPTION: IBM Content Navigator with IBM Daeja ViewOne Virtual is vulnerable to cross-site scripting. This vulnerability allows users to emb...

Kubernetes: Code inject via nginx.ingress.kubernetes.io/permanent-redirect annotation

The nginx.ingress.kubernetes.io/permanent-redirect annotation was not properly sanitized when passed into the nginx configuration, allowing code injection from users able to create ingress objects. This allowed commands to be run on the ingress-nginx-controller pod and the Kubernetes API to be...

VeryPhoto v3.0 iOS - Script Code Inject Web Vulnerability

Document Title: =============== VeryPhoto v3.0 iOS - Script Code Inject Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1401 Release Date: ============= 2015-01-13 Vulnerability Laboratory ID VL-ID: ====================================...

EasyPHP WebServer v.(all) <= Multiple Vulnerabilities

EasyPHP is Suffer from : + Auth Bypass + Remote Shell Injection / Remote Code Execute The Bug in EasyPHP WebServer Manager found because the PORTAL of Administration doesn't protected ! so just when you found the Admin-Portal - you can bypass the auth directly and remote attacker can get some...

Apple WGT Dictionnaire 1.3 - Persistent Web Vulnerability

Document Title: =============== Apple WGT Dictionnaire 1.3 - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=774 Release Date: ============= 2012-11-26 Vulnerability Laboratory ID VL-ID: ==================================== 7...

Apple WGT Dictionnaire 1.3 - Persistent Web Vulnerability

Document Title: =============== Apple WGT Dictionnaire 1.3 - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=774 Release Date: ============= 2012-11-26 Vulnerability Laboratory ID VL-ID: ==================================== 7...

phpcms 2 0 0 8 latest 0day added bulk EXP-vulnerability warning-the black bar safety net

Play the junk, throw it to everyone to play it. Now the hit rate is also good Oh. Direct GETSHELL it. Word password is c EXP: !/ usr/bin/php ? php printr' +---------------------------------------------------------------------------+ PHPCMS Remote Code Inject GetShell Trojan Google Dork:Powered by...