EUVD-2019-14825

Malware in sbrugna...

CVE-2022-4239 Workreap < 2.6.4 - Subscriber+ Arbitrary Posts Deletion via IDOR

The Workreap WordPress theme before 2.6.4 does not verify that an addon service belongs to the user issuing the request, or indeed that it is an addon service, when processing the workreapaddonsserviceremove action, allowing any user to delete any post by knowing or guessing the id...

CVE-2022-30260

Emerson DeltaV Distributed Control System DCS has insufficient verification of firmware integrity an inadequate checksum approach, and no signature. This affects versions before 14.3 of DeltaV M-series, DeltaV S-series, DeltaV P-series, DeltaV SIS, and DeltaV CIOC/EIOC/WIOC IO cards...

CVE-2020-1843

CVE-2020-1843 affects Huawei HEGE-560 and several OSCA/OSCA variants (OSCA-550, OSCA-550A, OSCA-550AX, OSCA-550X) with an insufficient verification vulnerability. The issue enables an attacker to perform specific operations via physical access, potentially resulting in illegal actions. Root cause...

CVE-2017-3219

Acronis True Image up to and including version 2017 Build 8053 performs software updates using HTTP. Downloaded updates are only verified using a server-provided MD5 hash...

polarHelp.txt

Polar HelpDesk Inadequate Security Checks Summary Polar HelpDesk is "a software solution for implementation of a help desk support system on your web site". We found the product to inadequately verify whether the user logged on to the system provided username and password or the privileges that t...

[NT] Polar HelpDesk Inadequate Security Checks

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...