CVE-2021-33190

In Apache APISIX Dashboard version 2.6, we changed the default value of listen host to 0.0.0.0 in order to facilitate users to configure external network access. In the IP allowed list restriction, a risky function was used for the IP acquisition, which made it possible to bypass the network limi...

Ross Video DashBoard 安全漏洞

Ross Video DashBoard is an open control and management system from Ross Video Canada. A security vulnerability exists in Ross Video DashBoard version 8.5.1, which stems from improperly set permissions and could result in elevated privileges...

Karmada Dashboard API Unauthorized Access Vulnerability

Impact This is an authentication bypass vulnerability in the Karmada Dashboard API. The backend API endpoints e.g., /api/v1/secret, /api/v1/service did not enforce authentication, allowing unauthenticated users to access sensitive cluster information such as Secrets and Services directly. Althoug...

CVE-2025-3968

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /api.php. The manipulation of the argument catid leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2023-34796

Cross site scripting XSS vulnerabiliy in dmarcts-report-viewer dashboard versions 1.1 and thru commit 8a1d882b4c481a05e296e9b38a7961e912146a0f, allows unauthenticated attackers to execute arbitrary code via the orgname or domain values...

dmarcts-report-viewer 跨站脚本漏洞

dmarcts-report-viewer is a PHP viewer for DMARC records by TechSneeze Individual Developers. A security vulnerability exists in dmarcts-report-viewer dashboard version 1.1. An attacker can exploit this vulnerability to execute arbitrary code via the orgname or domain value...