CVE-2022-30050

Gnuboard 5.55 and 5.56 is vulnerable to Cross Site Scripting XSS via bbs/memberconfirm.php...

PT-2022-19987 · Gnuboard · Gnuboard

Name of the Vulnerable Software and Affected Versions: Gnuboard versions 5.55 through 5.56 Description: The issue is related to Cross Site Scripting XSS via the bbs/member confirm.php endpoint. This allows for potential malicious script injection. Recommendations: For versions 5.55 and 5.56,...

GNUBOARD5 跨站脚本漏洞

GNUBOARD5 is a PHP and MySQL-based Web forum system. GNUBOARD5 versions 5.55 and 5.56 are vulnerable to a cross-site scripting vulnerability, which originates in bbs/memberconfirm.php and lacks a data validation filter for user-supplied data and output. An attacker could exploit this vulnerabilit...

Weak Password Recovery Mechanism for Forgotten Password

Overview mantisbt/mantisbt is a mantis bug tracker. Affected versions of this package are vulnerable to Weak Password Recovery Mechanism for Forgotten Password via an empty confirmhash value to verify.php. Remediation Upgrade mantisbt/mantisbt to version 1.3.10, 2.2.4, 2.3.1 or higher. References...

GSD-2022-1002307 qede: confirm skb is allocated before using

qede: confirm skb is allocated before using This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.238 by commit...

GSD-2022-1001357 qede: confirm skb is allocated before using

qede: confirm skb is allocated before using This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.20 by commit...

LifterLMS PayPal < 1.4.0 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape some parameters from the payment confirmation page before outputting them back in the page, leading to a Reflected Cross-Site Scripting issue https://example.com/purchase/confirm-payment/?order=order-xxxxxxx&PayerID=aa"...

PT-2022-7622 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to commit 9f1c5ocf39167ff71dc5953a3234f3f6eeb8fcb5 Description: The issue is related to a potential leak in the Linux kernel's net/smc component. The problem occurs when the tcp abort function discards CLC CONFIRM...

PT-2021-19249 · Siemens · Simatic Rf186Ci +22

Name of the Vulnerable Software and Affected Versions: SIMATIC RF166C versions 1.1 through 1.3.2 SIMATIC RF185C versions 1.1 through 1.3.2 SIMATIC RF186C versions 1.1 through 1.3.2 SIMATIC RF186CI versions 1.1 through 1.3.2 SIMATIC RF188C versions 1.1 through 1.3.2 SIMATIC RF188CI versions 1.1...

PT-2021-13064 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android version Android-11 Description: In the onCreate of UsbConfirmActivity, there is a possible tapjacking vector due to an insecure default value. This could lead to local escalation of privilege with User execution privileges needed. Use...

eChat 1.0 SQL Injection Vulnerability

Exploit Title: eChat | Time-Based Blind SQL Injection Exploit Author: email protected Vendor Homepage: https://www.sourcecodester.com/php/10498/echat-simple-chat-system-app-using-phpmysql.html Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/echat.zip Version:...

eChat 1.0 SQL Injection

Exploit Title: eChat | Time-Based Blind SQL Injection Exploit Author: [email protected] Date: 2021-02-21 Vendor Homepage: https://www.sourcecodester.com/php/10498/echat-simple-chat-system-app-using-phpmysql.html Software Link:...

Unspecified Vulnerability in Citadel WebCit

WebCit is the Citadel Servlet engine. A security vulnerability exists in Citadel WebCit 926 and earlier versions. A remote authentication attacker can exploit this vulnerability to read someone's email via the msgconfirmmove template...

CVE-2020-27742

An Insecure Direct Object Reference vulnerability in Citadel WebCit through 926 allows authenticated remote attackers to read someone else's emails via the msgconfirmmove template. NOTE: this was reported to the vendor in a publicly archived "Multiple Security Vulnerabilities in WebCit 926" threa...

QIWI: account takeover https://qiwi.me

It was possible to takeover user account by sending wrong code parameter in /sms/confirm request. Problem is that code didn't have relation with current user session...

Security update for neovim (important)

openSUSE Security Update: Security update for neovim Announcement ID: openSUSE-SU-2019:1997-1 Rating: important References: 1137443 Cross-References: CVE-2019-12735 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update f...

cPanel cross-site scripting vulnerability (CNVD-2019-27018)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A cross-site scripting vulnerability exists in the UIconfirm API in cPanel versions prior to 60.0.25. The vulnerability stems fro...

CVE-2016-10781

cPanel before 60.0.25 allows self XSS in the UIconfirm API SEC-180...

Updated freeradius packages fix security vulnerability

An attacker can reflect the received scalar and element from the server in it's own commit message, and subsequently reflect the confirm value as well. This causes the adversary to successfully authenticate as the victim CVE-2019-11234. An invalid curve attack allows an attacker to authenticate a...

CVE-2019-9496 An invalid authentication sequence could result in the hostapd process terminating due to missing state validation steps

An invalid authentication sequence could result in the hostapd process terminating due to missing state validation steps when processing the SAE confirm message when in hostapd/AP mode. All version of hostapd with SAE support are vulnerable. An attacker may force the hostapd process to terminate,...