CVE-2026-30927 Admidio: Event participation IDOR - non-leaders can register other users for events via user_uuid parameter

Admidio is an open-source user management solution. Prior to 5.0.6, in modules/events/eventsfunction.php, the event participation logic allows any user who can participate in an event to register OTHER users by manipulating the useruuid GET parameter. The condition uses || OR, meaning if...

CVE-2023-49001

An issue in Indi Browser aka kvbrowser v.12.11.23 allows an attacker to bypass intended access restrictions via interaction with the com.example.gurry.kvbrowswer.webview component...

CVE-2023-49001

An issue in Indi Browser aka kvbrowser v.12.11.23 allows an attacker to bypass intended access restrictions via interaction with the com.example.gurry.kvbrowswer.webview component...

CVE-2023-49001

An issue in Indi Browser aka kvbrowser v.12.11.23 allows an attacker to bypass intended access restrictions via interaction with the com.example.gurry.kvbrowswer.webview component...

CVE-2023-49001

An issue in Indi Browser aka kvbrowser v.12.11.23 allows an attacker to bypass intended access restrictions via interaction with the com.example.gurry.kvbrowswer.webview component...

Design/Logic Flaw

An issue in Indi Browser aka kvbrowser v.12.11.23 allows an attacker to bypass intended access restrictions via interaction with the com.example.gurry.kvbrowswer.webview component...

CVE-2023-49001

Affected software: Indi Browser (aka kvbrowser) v12.11.23. Vulnerable component: com.example.gurry.kvbrowswer.webview. Issue cause/impact: bypass of intended access restrictions by interacting with the webview component, enabling unauthorized access as described in multiple sources; no concrete p...

CVE-2023-49001

An issue in Indi Browser aka kvbrowser v.12.11.23 allows an attacker to bypass intended access restrictions via interaction with the com.example.gurry.kvbrowswer.webview component...

CVE-2023-49001

An issue in Indi Browser aka kvbrowser v.12.11.23 allows an attacker to bypass intended access restrictions via interaction with the com.example.gurry.kvbrowswer.webview component...

Indi Browser Security Vulnerability

Indi Browser is a browser from Indi Browser, Inc. A security vulnerability exists in Indi Browser version v.12.11.23, which stems from a vulnerability that allows an attacker to bypass intended access restrictions by interacting with the com.example.gurry.kvbrowswer.webview component...

PT-2023-31026 · Unknown · Indi Browser

Name of the Vulnerable Software and Affected Versions: Indi Browser aka kvbrowser version 12.11.23 Description: An issue in Indi Browser allows an attacker to bypass intended access restrictions via interaction with the com.example.gurry.kvbrowswer.webview component. Recommendations: For version...

[SECURITY] Fedora 38 Update: libindi-2.0.0-3.fc38

INDI is a distributed control protocol designed to operate astronomical instrumentation. INDI is small, flexible, easy to parse, and scalable. It supports common DCS functions such as remote control, data acquisition, monitoring, and a lot more...

[SECURITY] Fedora 38 Update: indi-3rdparty-libraries-2.0.0-1.fc38

This is a metapackage for installing all INDI 3rdparty libraries at once. You probably don't want to install everything, but just pick the libraries you need from the appropriate subpackage. We currently ship the following libraries: - indi-3rdparty-libapogee - indi-3rdparty-libfli...

[SECURITY] Fedora 38 Update: indi-3rdparty-drivers-2.0.0-2.fc38

This is a metapackage for installing all INDI 3rdparty drivers at once. You probably don't want to install everything, but just pick the drivers you need from the appropriate subpackage. We currently ship the following drivers: - indi-3rdparty-aagcloudwatcher-ng - indi-3rdparty-aok -...

Fedora: Security Advisory for indi-3rdparty-drivers (FEDORA-2023-a5e10b188a)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for indi-3rdparty-libraries (FEDORA-2023-a5e10b188a)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2016-3618)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3618 advisory. - Btrfs: fix truncation of compressed and inlined extents Divya Indi Orabug: 22307286 CVE-2015-8374 - Btrfs: fix file corruption and data loss afte...

ClickIndia Classifieds network hacked by Sec Indi

The Sec Indi Security Team has found Multiple major flaws on Clickindia.com - One of the biggest Classifieds network. There is a highly possible chance to damage ClickIndia system or to steal the Database. Hackers Exploit it via SQL Injection Vulnerability...

ClickIndia Classifieds network hacked by Sec Indi

The Sec Indi Security Team has found Multiple major flaws on Clickindia.com - One of the biggest Classifieds network. There is a highly possible chance to damage ClickIndia system or to steal the Database. Hackers Exploit it via SQL Injection Vulnerability...

Multiple SQL Injection Vulnerabilities on CNN website Exposed

Multiple SQL Injection Vulnerabilities on CNN website Exposed Yes ! CNN is also not Secure site, There are Multiple SQL Injection Vulnerabilities on CNN News site exposed by Hacker named "Sec Indi ". CNN.com is among the world's leaders in online news and information delivery. Staffed 24 hours,...