11 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-49992
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm/mprotect: only reference swap pfn page if type match Yu Zhao reported a bug after the...
Flipkart-Clone-PHP 安全漏洞
Flipkart-Clone-PHP is an application by Jigar Sable Personal Developer. A security vulnerability exists in Flipkart-Clone-PHP version 1.0, which stems from the producttitle parameter in the entry.php page containing a SQL injection vulnerability...
CVE-2024-25020
IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to malicious file upload by allowing unrestricted filetype attachments in the Journal entry page. Attackers can make use of this weakness and upload malicious executable files into the system and can be sent to victims for performing further...
CVE-2024-25020 IBM Cognos Controller file upload
IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to malicious file upload by allowing unrestricted filetype attachments in the Journal entry page. Attackers can make use of this weakness and upload malicious executable files into the system and can be sent to victims for performing further...
CVE-2024-25020 IBM Cognos Controller file upload
IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to malicious file upload by allowing unrestricted filetype attachments in the Journal entry page. Attackers can make use of this weakness and upload malicious executable files into the system and can be sent to victims for performing further...
CVE-2024-25020
CVE-2024-25020 affects IBM Cognos Controller 11.0.0 and 11.0.1, where uploading attachments on the Journal entry page allows unrestricted filetypes, enabling attackers to upload malicious executables that could be used against victims. The issue is documented across multiple sources linked to the...
PT-2024-20703 · Ibm · Ibm Cognos Controller
Name of the Vulnerable Software and Affected Versions: IBM Cognos Controller versions 11.0.0 through 11.0.1 Description: The issue allows malicious file upload by permitting unrestricted filetype attachments in the Journal entry page. Attackers can exploit this weakness to upload malicious...
The vulnerability of the Loway QueueMetrics software for analyzing call center efficiency metrics lies in the redirection of URLs to an unreliable website during the loading of the entry page. This allows a hacker to redirect users to any arbitrary URL address.
The vulnerability of the Loway QueueMetrics software for analyzing call center performance metrics is related to the redirection of URLs to an unreliable website during the loading of the login page. Exploiting this vulnerability allows a malicious actor to redirect users to any given URL address...
CVE-2024-43413 Xibo CMS XSS vulnerability using DataSet HTML columns
Xibo is an open source digital signage platform with a web content management system CMS. Prior to version 4.1.0, a cross-site scripting vulnerability in Xibo CMS allows authorized users to execute JavaScript via the DataSet functionality. Users can design a DataSet with a HTML column which...
UBUNTU-CVE-2023-4732
A flaw was found in pfnswapentrytopage in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user privilege may cause a denial of service problem due to a BUG statement referencing pmdt x...
Unfixed XSS vulnerability at www.teldor.com
Security researcher MaXWeL, has submitted on 05/06/2007 a cross-site-scripting XSS vulnerability affecting www.teldor.com, which at the time of submission ranked 959209 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/06/2007. It is currently...