SUSE CVE-2020-35572

Adminer through 4.7.8 allows XSS via the history parameter to the default URI...

Observium SQL Injection Vulnerability

Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability to inject malicious SQL statements via username0 of the...

CVE-2019-6113

Directory traversal vulnerability on ONKYO TX-NR686 1030-5000-1040-0010 A/V Receiver devices allows remote attackers to read arbitrary files via a .. dot dot and %2f to the default URI...

AvantFAX Cross-Site Scripting Vulnerability

AvantFAX is a suite of software for viewing and sending faxes. The software supports user management, permission management, fax line management and fax category management. A cross-site scripting vulnerability exists in AvantFAX version 3.3.3. A remote attacker can exploit this vulnerability by...

CVE-2017-12299

A vulnerability exists in the process of creating default IP blocks during device initialization for Cisco ASA Next-Generation Firewall Services that could allow an unauthenticated, remote attacker to send traffic to the local IP address of the device, bypassing any filters that are configured to...

DEBIAN-CVE-2011-2937

Cross-site scripting XSS vulnerability in the UI messages functionality in Roundcube Webmail before 0.5.4 allows remote attackers to inject arbitrary web script or HTML via the mbox parameter to the default URI...

Zhuo Xun intelligent site management system EmteEasySite vulnerability 0day-vulnerability warning-the black bar safety net

| Zhuo Xun intelligent site management system ,official website:http://www. emte. com. cn/ Google:technical support:Zhuo information technology the default background:/main/login. asp //directly into the backstage to see the copyright is not EmteEasy system Exploit:the default address database ca...

W78CMS SQL injection vulnerability-vulnerability warning-the black bar safety net

W78 enterprise ASP web site management system V1. 1SQL injection Program Release Date:2 0 1 0 year 0 3 month 1 8 day. Streaking of the system. 1. shopmore. asp set rs=server. createobject"adodb. recordset" exec="select from shop where ssfl="& request. QueryString"id" &" order by id desc" rs. open...

The big data library default address-vulnerability warning-the black bar safety net

data/dvbbs7. mdb Action Network Forum database /databackup/dvbbs7. mdb Action Network Forum database /bbs/databackup/dvbbs7. mdb Action Network Forum database /admin/data/qcdnnews. mdb green to create article management system database /data/qcdnnews. mdb green to create article management system...

The big data library default address-vulnerability warning-the black bar safety net

/data/dvbbs7. mdb Action Network Forum database /databackup/dvbbs7. mdb Action Network Forum database /bbs/databackup/dvbbs7. mdb Action Network Forum database /admin/data/qcdnnews. mdb green to create article management system database /data/qcdnnews. mdb green to create article management syste...