26 matches found
EUVD-2006-5499
Malware in sbrugna...
EUVD-2008-2440
Malware in sbrugna...
EUVD-2008-2441
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2020-2926
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication GCS. Supported versions that are affected are 8.0.19 and prior...
Remote Code Execution via Pickle Deserialization with Hard-Coded AuthKey in RPC Server
Description RagFlow implements an RPC server using Python's native multiprocessing package. It fully understands the use of AuthKey to access and control the group communication when applying multiprocessing for network conditions via socket, but the current implementation hard-coded the AuthKey ...
CVE-2024-47122
In the goTenna Pro App, the encryption keys are stored along with a static IV on the End User Device EUD. This allows for complete decryption of keys stored on the EUD if physically compromised. This allows an attacker to decrypt all encrypted broadcast communications based on encryption keys...
CVE-2022-46168 Group SMTP user emails are exposed in CC email header
Discourse is an option source discussion platform. Prior to version 2.8.14 on the stable branch and version 2.9.0.beta15 on the beta and tests-passed branches, recipients of a group SMTP email could see the email addresses of all other users inside the group SMTP topic. Most of the time this is n...
WhatsApp Doubles Down With End-to-End Encrypted ‘Communities’
More than just group DMs, WhatsApp's new feature is a major expansion of its comprehensive encrypted messaging...
Web Group Communication Center (WGCC) <= 1.0.3 - SQL Injection Vuln
No description provided by source. Title : Web Group Communication Center XSS/SQL Multiple Remote Vulnerabilies Author : myvx Date : 13.05.2008 Application : Web Group Communication Center Version : = 1.0.3 PreRelease 1 Vendor : http://wgcc.de/ Download :...
Cross site scripting
Cross-site scripting XSS vulnerability in profile.php in Web Group Communication Center WGCC 1.0.3 PreRelease 1 and earlier allows remote attackers to inject arbitrary web script or HTML via the userid parameter in a show action...
CVE-2008-2446
Multiple SQL injection vulnerabilities in Web Group Communication Center WGCC 1.0.3 PreRelease 1 and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 userid parameter to a profile.php in a "show moreinfo" action; the 2 bildid parameter to b picturegallery.php i...
CVE-2008-2445
Cross-site scripting XSS vulnerability in profile.php in Web Group Communication Center WGCC 1.0.3 PreRelease 1 and earlier allows remote attackers to inject arbitrary web script or HTML via the userid parameter in a show action...
Sql injection
Multiple SQL injection vulnerabilities in Web Group Communication Center WGCC 1.0.3 PreRelease 1 and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 userid parameter to a profile.php in a "show moreinfo" action; the 2 bildid parameter to b picturegallery.php i...
CVE-2008-2446
CVE-2008-2446 affects Web Group Communication Center (WGCC) 1.0.3 PreRelease 1 and earlier. Multiple SQL injection vulnerabilities allow arbitrary SQL execution via parameters in several actions: (1) userid in profile.php (show moreinfo), (2) bildid in picturegallery.php (shownext), (3) id in fil...
CVE-2008-2446
Multiple SQL injection vulnerabilities in Web Group Communication Center WGCC 1.0.3 PreRelease 1 and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 userid parameter to a profile.php in a "show moreinfo" action; the 2 bildid parameter to b picturegallery.php i...
CVE-2008-2445
The CVE-2008-2445 issue is a Cross-Site Scripting (XSS) vulnerability in Web Group Communication Center (WGCC) profile.php, affecting version 1.0.3 PreRelease 1 and earlier. The vulnerability is triggered via the userid parameter in a show action, allowing remote attackers to inject arbitrary web...
CVE-2008-2445
Cross-site scripting XSS vulnerability in profile.php in Web Group Communication Center WGCC 1.0.3 PreRelease 1 and earlier allows remote attackers to inject arbitrary web script or HTML via the userid parameter in a show action...
Web Group Communication Center (WGCC) <= 1.0.3 SQL Injection Vuln
No description provided by source. Title : Web Group Communication Center XSS/SQL Multiple Remote Vulnerabilies Author : myvx Date : 13.05.2008 Application : Web Group Communication Center Version : = 1.0.3 PreRelease 1 Vendor : http://wgcc.de/ Download :...
wgcc-sql.txt
Title : Web Group Communication Center XSS/SQL Multiple Remote Vulnerabilies Author : myvx Date : 13.05.2008 Application : Web Group Communication Center Version : = 1.0.3 PreRelease 1 Vendor : http://wgcc.de/ Download : http://wgcc.de/filebase/GeschuetzerBereich/wgccrelease102.zip google dork :...
Web Group Communication Center (WGCC) 1.0.3 - SQL Injection
Web Group Communication Center WGCC 1.0.3 - SQL Injection Title : Web Group Communication Center XSS/SQL Multiple Remote Vulnerabilies Author : myvx Date : 13.05.2008 Application : Web Group Communication Center Version : = 1.0.3 PreRelease 1 Vendor : http://wgcc.de/ Download :...