Glances - Information Disclosure

Glances 4.5.2 contains an information disclosure vulnerability caused by the web server running without authentication by default, letting remote attackers access sensitive system information including credentials, exploit requires no special privileges. id: CVE-2026-32596 info: name: Glances -...

DEBIAN-CVE-2023-28709

The fix for CVE-2023-24998 was incomplete for Apache Tomcat 11.0.0-M2 to 11.0.0-M4, 10.1.5 to 10.1.7, 9.0.71 to 9.0.73 and 8.5.85 to 8.5.87. If non-default HTTP connector settings were used such that the maxParameterCount could be reached using query string parameters and a request was submitted...

The vulnerability of the microprogramming software in the Solar-Log photovoltaic system allows a malicious individual to execute arbitrary code and cause malfunctions in the system.

The vulnerability of the Microprogramming Software in the Solar-log photovoltaic system is related to errors in the code of the default web server component used. Exploiting this vulnerability allows a malicious individual to load files by specifying an arbitrary path, including paths to system...

Symantec IM Manager Administrative Interface DetailReportGroup.lgx Definition File SQL Injection Vulnerabilities

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec IM Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the rdPageImlogic.aspx page which is exposed through an IIS extension on the defau...

CheckPoint Firewall Default Web Server

Binary data 3692.prm...