7 matches found
CVE-2026-42331
FOSSBilling is a free, open-source billing and client management system. Prior to version 0.8.0, the Guest API invoice/update endpoint is missing an authorization check present in other invoice-related endpoints, allowing an unauthenticated user with knowledge of an invoice hash to modify the...
CVE-2026-42331
FOSSBilling before version 0.8.0 has an authorization gap in the Guest API invoice/update endpoint. An unauthenticated attacker who knows an invoice hash can modify the payment gateway associated with an unpaid invoice, potentially changing gateway_id to any gateway configured in the system. The ...
EUVD-2025-31009
Malicious code in bioql PyPI...
CVE-2025-20365
A vulnerability in the IPv6 Router Advertisement RA packet processing of Cisco Access Point Software could allow an unauthenticated, adjacent attacker to modify the IPv6 gateway on an affected device. This vulnerability is due to a logic error in the processing of IPv6 RA packets that are receive...
CVE-2025-20365
Cisco Access Point Software is affected by a vulnerability in the IPv6 Router Advertisement (RA) packet processing. The issue arises from a logic error in processing RA packets from wireless clients, allowing an unauthenticated adjacent attacker to temporarily modify the device’s IPv6 gateway, po...
Cisco Access Point Software 安全漏洞
Cisco Access Point Software is a network access point built-in software from Cisco USA. A security vulnerability exists in Cisco Access Point Software that stems from an error in the IPv6 RA packet processing logic, which could lead to modification of the IPv6 gateway and intermittent packet loss...
PT-2025-39292
Name of the Vulnerable Software and Affected Versions Cisco Access Point Software affected versions not specified Description A flaw exists in the IPv6 Router Advertisement RA packet processing that could allow an unauthenticated, adjacent attacker to modify the IPv6 gateway on an affected device...