Microsoft Azure Arc 授权问题漏洞

Microsoft Azure Arc is a storage system provided by the American company Microsoft. It allows for the extension of the Azure platform into your environment. There are authorization-related vulnerabilities in Microsoft Azure Arc. Attackers can exploit these vulnerabilities to gain higher levels of...

EUVD-2019-17845

Malware in sbrugna...

EUVD-2001-0376

Malware in sbrugna...

EUVD-2025-20349

Malicious code in bioql PyPI...

XWiki Platform 安全漏洞

XWiki Platform is XWiki's open source suite of Wiki platforms for creating collaborative Web applications. A security vulnerability exists in XWiki Platform that stems from a privilege control issue in the real-time WYSIWYG editor extension, which allows a user with editing privileges to insert...

PT-2024-17573 · WordPress · Elementskit Elementor Addons

Name of the Vulnerable Software and Affected Versions: ElementsKit Elementor addons plugin for WordPress versions up to, and including, 3.0.6 Description: The issue is related to Stored Cross-Site Scripting via the button ID parameter due to insufficient input sanitization and output escaping. Th...

CVE-2024-0766 Envo's Elementor Templates & Widgets for WooCommerce <= 1.4.4 - Missing Authorization via templates_ajax_request

The Envo's Elementor Templates & Widgets for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the templatesajaxrequest function in all versions up to, and including, 1.4.4. This makes it possible for subscribers and higher to...

PT-2023-30382 · WordPress · Scott Paterson Easy Paypal Shopping Cart

Name of the Vulnerable Software and Affected Versions: Scott Paterson Easy PayPal Shopping Cart plugin versions = 1.1.10 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that affects users with contributor or higher permissions. This allows for malicious script...

Privilege Escalation

Slurm is vulnerable to Privilege Escalation. The vulnerability exists due to an Incorrect Access Control allowing an attacker to bypass the authorization to gain higher access...

Huawei Quidway Switches Privilege Escalation Vulnerability (huawei-sa-20150121-01-quidway)

Huawei Quidway switches are prone to a privilege escalation vulnerability. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

Wise-FTP 8.0.2 DLL Hijack

Technical Details & Description: ================================ A local dll injection vulnerability has been discovered in the official Wise-FTP v8.0.2 software. The issue allows local attackers to inject code to vulnerable libraries to compromise the process or to gain higher access privileges...

Security Advisory-Authority Control Vulnerability in Quidway Switches

Huawei Quidway switches have the authority control vulnerability in access authentication, which may be exploited by attackers to obtain higher access permissions. Vulnerability ID: HWPSIRT-2014-11119 This Vulnerability has been assigned Common Vulnerabilities and Exposures CVE ID: CVE-2015-1460...