PT-2026-20574

Name of the Vulnerable Software and Affected Versions Aruba HiSpeed Cache versions up to and including 3.0.2 Description The Aruba HiSpeed Cache plugin for WordPress is susceptible to unauthorized data modification because of absent capability checks in several functions. This allows...

EUVD-2022-45040

Malicious code in bioql PyPI...

EUVD-2022-5673

Malicious code in bioql PyPI...

CVE-2023-4690

The Elementor Addon Elements plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.12.7. This is due to missing or incorrect nonce validation on the eaesaveconfig function. This makes it possible for unauthenticated attackers to change configuration...

Information Leakage

craftcms/cms is vulnerable to information leakage. The leakage is possible because it does not adopt the config settings in preserveExifData on image upload, revealing personal/geolocation data to the public...

Centralized IPTables Firewall Control Script: CFC

Centralized IPTables Firewall Control Script Centralized firewall control provides a centralized way to manage the firewall on multiple servers or loadbalancers running iptables. This way you can quickly allow/block/del/search abuse ranges etc. with one command on several servers. It accesses tho...

CVE-2015-5618

The CVE-2015-5618 entry concerns Chiyu BF-630 and BF-630W fingerprint access-control devices. The documented vulnerability allows remote attackers to bypass authentication and read or modify configuration data: (1) Voice Time Set via a request to voice.htm and (2) UniFinger configuration via a re...

Fedora 21 : mediawiki-1.23.4-1.fc21 (2014-11717)

bug 69008 SECURITY: Enhance CSS filtering in SVG files. Filter elements; normalize style elements and attributes before filtering; add checks for attributes that contain css; add unit tests for html5sec and reported bugs. - bug 65998 Make MySQLi work with non-standard socket. - bug 66986...

Fhimage 1.2.1 Index Change Exploit

!/usr/bin/perl ----------------------------------------------------------------------------------------------- INFORMATIONS ----------------------------------------------------------------------------------------------- Fhimage 1.2.1 http://www.flash-here.com/downloads/download.php?id=9 Remote...

Linksys WRT54G Firmware 1.00.9 - Security Bypass (2)

Linksys WRT54G Firmware 1.00.9 - Security Bypass 2 | l/ l j| \ / \ | \l j| \ | T l j| \ | | / \ | ' / | T | YY Y| o | T | Yl/ | | T | Y| jY Y | \ | | | | || Q || / | | | | || j | | | | || l | O | | Y | | | | || || | | | | | || / | | | | | || | | | . | j l | | |l || | j l | | || || T j l | | || T ...

CVE-2005-1526

PHP remote file inclusion vulnerability in configsettings.php in Cacti before 0.8.6e allows remote attackers to execute arbitrary PHP code via the configincludepath parameter...

RaXnet Cacti 0.5/0.6/0.8 - 'Config_Settings.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/14028/info RaXnet Cacti is prone to a remote file include vulnerability. The problem presents itself specifically when an attacker passes the location of a remote attacker-specified script through the 'configsettings.php' script. An attacker may leverage...