116 matches found
EUVD-2013-5060
Malware in sbrugna...
EUVD-2014-3653
Malware in sbrugna...
EUVD-2020-4704
Malware in sbrugna...
EUVD-2018-9948
Malware in sbrugna...
CVE-2015-7304
Cross-site scripting XSS vulnerability in the amoCRM module 7.x-1.x before 7.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified HTTP POST data...
CVE-2024-45179
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to insufficient input validation, the C-MOR web interface is vulnerable to OS command injection attacks. It was found out that different functionality is vulnerable to OS command injection attacks, for exampl...
CVE-2024-45179
The CVE affects za-internet C-MOR Video Surveillance versions 5.2401–6.00PL01. Root cause: insufficient input validation in the web interface enables OS command injection via HTTP POST data. Notable vulnerable components include generatesslreq.pml (allows low-privileged authenticated users to run...
CVE-2024-45179
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to insufficient input validation, the C-MOR web interface is vulnerable to OS command injection attacks. It was found out that different functionality is vulnerable to OS command injection attacks, for exampl...
CVE-2024-45179
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to insufficient input validation, the C-MOR web interface is vulnerable to OS command injection attacks. It was found out that different functionality is vulnerable to OS command injection attacks, for exampl...
CVE-2024-42987
Tenda FH1206 v02.03.01.35 was discovered to contain a stack-based buffer overflow vulnerability in the fromPptpUserAdd function. The vulnerability can be triggered via the modino, username, newpwd, or pptpdnetseg parameters, all of which are passed via HTTP POST and used in unsafe sprintf calls...
K85307687: cURL and libcurl vulnerabilities CVE-2014-3613, CVE-2014-3707, and CVE-2014-8150
Security Advisory Description CVE-2014-3613 cURL and libcurl before 7.38.0 does not properly handle IP addresses in cookie domain names, which allows remote attackers to set cookies for or send arbitrary cookies to certain sites, as demonstrated by a site at 192.168.0.1 setting cookies for a site...
All Vulnerabilities for esic.barauna.pb.gov.br Patched via Open Bug Bounty
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| esic.barauna.pb.gov.br ---|--- Open Bug...
ncagr.gov Cross Site Scripting vulnerability OBB-2396168
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| ncagr.gov ---|--- Open Bug Bounty...
All Vulnerabilities for eca.europa.eu Patched via Open Bug Bounty
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| eca.europa.eu ---|--- Open Bug Bounty...
enviro.epa.gov Cross Site Scripting vulnerability OBB-2382669
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| enviro.epa.gov ---|--- Open Bug Bounty...
Cisco NX-OS Software 操作系统命令注入漏洞
Cisco NX-OS Software is a suite of data center-grade operating system software for switches from Cisco. An operating system command injection vulnerability exists in Cisco NX-OS Software, which arises from the product's failure to validate the contents of user-initiated HTTP POST request data. An...
baclieu.gov.vn Cross Site Scripting vulnerability OBB-2377367
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| baclieu.gov.vn ---|--- Open Bug Bounty...
All Vulnerabilities for zk.arbitr.gov.ua Patched via Open Bug Bounty
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| zk.arbitr.gov.ua ---|--- Open Bug Bount...
entptest.hud.gov Cross Site Scripting vulnerability OBB-2376867
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| entptest.hud.gov ---|--- Open Bug Bount...
ovr.akleg.gov Cross Site Scripting vulnerability OBB-2373067
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| ovr.akleg.gov ---|--- Open Bug Bounty...