106 matches found
CVE-2024-38405
CVE-2024-38405 is a Qualcomm WLAN component vulnerability causing a transient denial-of-service when processing the CU information from the RNR IE. The issue is documented with a high impact in Qualcomm’s security context and is indicated in accompanying Android bulletins as part of patch levels ...
CVE-2024-38405 Buffer Over-read in WLAN Host
Transient DOS while processing the CU information from RNR IE...
KB5046061 - Description of the security update for SQL Server 2017 CU31: October 8, 2024
KB5046061 - Description of the security update for SQL Server 2017 CU31: October 8, 2024 Summary Improvements and fixes included in this update How to obtain and install the update How to obtain or download the latest cumulative update package for Linux More information File information Informati...
TOTOLINK X5000R 操作系统命令注入漏洞
The TOTOLINK X5000r is a wireless router manufactured by TOTOLINK. TOTOLINK X5000r has a command injection vulnerability in version 9.1.0cu.2350b20230313. The vulnerability arises because the setAccessDeviceCfg function within the /cgi-bin/cstecgi.cgi file fails to properly validate or clean up...
Microsoft OLE DB Provider for SQL Server 安全漏洞
Microsoft OLE DB Provider for SQL Server is an API from Microsoft Corporation USA that allows access to data from a variety of sources in a unified way. A security vulnerability exists in Microsoft OLE DB Provider for SQL Server. An attacker could exploit the vulnerability to remotely execute cod...
CVE-2023-48985
Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the login.php component...
CVE-2023-48987
Blind SQL Injection vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the pages.php component...
CVE-2023-48985
Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the login.php component...
Cross site scripting
Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the users.php component...
Sql injection
Blind SQL Injection vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the pages.php component...
Cross site scripting
Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the login.php component...
CVE-2023-48985
Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the login.php component...
CVE-2023-48986
Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the users.php component...
CU Solutions Group Content Management System Security Vulnerability
CU Solutions Group Content Management System CUSG CMS is a content management system from CU Solutions Group, Inc. A security vulnerability exists in CU Solutions Group Content Management System versions prior to v.7.75. A remote attacker can exploit this vulnerability to execute arbitrary code,...
CVE-2023-48985
CU Solutions Group (CUSG) Content Management System (CMS) is affected in versions prior to 7.75 by a Cross Site Scripting (XSS) vulnerability. The issue occurs via a crafted script to the login.php component, enabling a remote attacker to execute arbitrary code, escalate privileges, and disclose ...
CVE-2023-48985
Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the login.php component...
CVE-2023-48986
CVE-2023-48986 is an XSS vulnerability in CU Solutions Group (CUSG) Content Management System (CMS) prior to version 7.75. The issue affects the users.php component and can allow a remote attacker to execute arbitrary script, potentially escalate privileges and access sensitive information. Root ...
CVE-2023-48986
Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the users.php component...
CVE-2023-48987
CVE-2023-48987 : The CU Solutions Group (CUSG) Content Management System (CMS) versions prior to 7.75 have a Blind SQL Injection in the pages.php component. A remote attacker can send a crafted script to exploit this, potentially executing arbitrary code, escalating privileges, and accessing sens...
CVE-2023-48987
Blind SQL Injection vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the pages.php component...