12 matches found
CVE-2006-7006
PHP remote file inclusion vulnerability in upload/admin/team.php in Robin de Graff Somery 0.4.4 allows remote attackers to execute arbitrary PHP code via a URL in the checkauth parameter. NOTE: CVE disputes this vulnerability because the checkauth parameter is only used in conditionals...
CVE-2023-24376
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Nico Graff WP Simple Events plugin = 1.0 versions...
CVE-2023-24376
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Nico Graff WP Simple Events plugin = 1.0 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Nico Graff WP Simple Events plugin = 1.0 versions...
CVE-2023-24376
CVE-2023-24376 affects WP Simple Events (WordPress) ≤ 1.0. The vulnerability is an Auth. (admin+) Stored Cross-Site Scripting (XSS) in the plugin, with the exploitation described as a stored XSS condition requiring administrative privileges and user interaction. CVSS scores vary by source (NVD: 4...
Conti ransomware gang apologized to Arab Royals over data leak
By Waqas The data leak took place last month when the infamous Conti ransomware gang hacked Graff, a UK-based jewelry store Graff popular among the elite. This is a post from HackRead.com Read the original post: Conti ransomware gang apologized to Arab Royals over data leak...
A week in security (Nov 1 – Nov 7)
Last week on Malwarebytes Labs Celebrity jewelry house Graff falls victim to ransomware Lessons from a real-life ransomware attack Is Apples Safari browser the last, best hope for web privacy? What is Twitch? Google patches zero-day vulnerability, and others, in Android Zuckerbergs Metaverse, and...
Robert Mueller Has Already Told You Everything You Need To Know
With the exception of President Trump’s legal team, no one has been watching the Mueller investigation more closely than Garrett Graff...
CVE-2006-7006
PHP remote file inclusion vulnerability in upload/admin/team.php in Robin de Graff Somery 0.4.4 allows remote attackers to execute arbitrary PHP code via a URL in the checkauth parameter. NOTE: CVE disputes this vulnerability because the checkauth parameter is only used in conditionals...
CVE-2006-7006
PHP remote file inclusion vulnerability in upload/admin/team.php in Robin de Graff Somery 0.4.4 allows remote attackers to execute arbitrary PHP code via a URL in the checkauth parameter. NOTE: CVE disputes this vulnerability because the checkauth parameter is only used in conditionals...
CVE-2006-7006
CVE-2006-7006 concerns Robin de Graff Somery 0.4.4, where a PHP remote file inclusion through upload/admin/team.php could allow arbitrary PHP execution via a URL in the checkauth parameter. Red Hat/NVD entries reiterate the description but also include a note that CVE disputes this vulnerability ...
PT-2007-1285 · Robin De Graff · Robin De Graff Somery
Name of the Vulnerable Software and Affected Versions: Robin de Graff Somery version 0.4.4 Description: A remote file inclusion issue in upload/admin/team.php allows remote attackers to potentially execute arbitrary PHP code via a URL in the checkauth parameter. However, it's noted that the...