12 matches found
Multiple vulnerabilities in ChatLuck
Overview ChatLuck provided by NEOJAPAN Inc. contains multiple vulnerabilities listed below. Cross-site scripting vulnerability in Chat Rooms CWE-79 - CVE-2025-53858 Insufficient granularity of access control vulnerability in Invitation of Guest Users CWE-1220 - CVE-2025-54461 Cross-site scripting...
EUVD-2017-14062
Malware in sbrugna...
EUVD-2024-31172
Malicious code in bioql PyPI...
CVE-2024-33433
Cross Site Scripting vulnerability in TOTOLINK X2000R before v1.0.0-B20231213.1013 allows a remote attacker to execute arbitrary code via the Guest Access Control parameter in the Wireless Page...
CVE-2024-33433
Cross Site Scripting vulnerability in TOTOLINK X2000R before v1.0.0-B20231213.1013 allows a remote attacker to execute arbitrary code via the Guest Access Control parameter in the Wireless Page...
CVE-2024-33433
Cross Site Scripting vulnerability in TOTOLINK X2000R before v1.0.0-B20231213.1013 allows a remote attacker to execute arbitrary code via the Guest Access Control parameter in the Wireless Page...
CVE-2024-33433
Cross Site Scripting vulnerability in TOTOLINK X2000R before v1.0.0-B20231213.1013 allows a remote attacker to execute arbitrary code via the Guest Access Control parameter in the Wireless Page...
CVE-2024-33433
The CVE-2024-33433 entry concerns TOTOLINK X2000R (pre v1.0.0-B20231213.1013) with a Cross Site Scripting vulnerability in the Wireless Page caused by insufficient filtering/escaping of the Guest Access Control parameter. An attacker could exploit this via a crafted request to execute arbitrary W...
PT-2024-25254 · Totolink · Totolink X2000R
Name of the Vulnerable Software and Affected Versions: TOTOLINK X2000R versions prior to v1.0.0-B20231213.1013 Description: The issue allows a remote attacker to execute arbitrary code via the Guest Access Control parameter in the "Wireless Page" API endpoint. This enables the attacker to perform...
CVE-2017-4945
VMware Workstation 14.x and 12.x and Fusion 10.x and 8.x contain a guest access control vulnerability. This issue may allow program execution via Unity on locked Windows VMs. VMware Tools must be updated to 10.2.0 for each VM to resolve CVE-2017-4945. VMware Tools 10.2.0 is consumed by Workstatio...
CVE-2017-4945
VMware Workstation 14.x and 12.x and Fusion 10.x and 8.x contain a guest access control vulnerability. This issue may allow program execution via Unity on locked Windows VMs. VMware Tools must be updated to 10.2.0 for each VM to resolve CVE-2017-4945. VMware Tools 10.2.0 is consumed by Workstatio...
CVE-2017-4945
CVE-2017-4945 affects VMware Workstation (14.x, 12.x), Fusion (10.x, 8.x) and VMware Tools. Root cause: guest access control weakness that may allow code execution via Unity on locked Windows VMs. Affected components/versions: VMware Tools prior to 10.2.0; Tools 10.2.0 fixes this issue and is pac...