12 matches found
EUVD-2019-4897
Malware in sbrugna...
EUVD-2020-30713
Malware in sbrugna...
CVE-2021-37306
An Insecure Permissions issue in jeecg-boot 2.4.5 and earlier allows remote attackers to gain escalated privilege and view sensitive information via api uri: api uri:/sys/user/checkOnlyUser?username=admin...
CVE-2024-44274
The issue was addressed with improved authentication. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1, watchOS 11.1. An attacker with physical access to a locked device may be able to view sensitive user information...
Code injection
If an attacker can control a script that is executed in the victim's browser, then they can typically fully compromise that user. Amongst other things, the attacker can: Perform any action within the application that the user can perform. View any information that the user is able to view. Modify...
CVE-2022-3255 Cross-site Scripting (XSS) - Reflected in pimcore/pimcore
If an attacker can control a script that is executed in the victim's browser, then they can typically fully compromise that user. Amongst other things, the attacker can: Perform any action within the application that the user can perform. View any information that the user is able to view. Modify...
SAP NetWeaver和SAP NetWeaver Enterprise Portal 跨站脚本漏洞
SAP NetWeaver Enterprise Portal is a web front-end component of SAP NetWeaver. A cross-site scripting vulnerability exists in SAP NetWeaver Enterprise Portal, which can be exploited by attackers to view or modify information...
U.S. Dept Of Defense: RXSS - ████
Hello, friends today when I was checking some sites I found this bug on your own website. Detalis XSS Cross-Site Scripting XSS attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted websites. XSS attacks occur when an attacker uses a web...
macOS 10.14.x < 10.14.6 Multiple Vulnerabilities
The remote host is running a version of macOS / Mac OS X that is 10.14.x prior to 10.14.6. It is, therefore, affected by multiple vulnerabilities : - An application may be able to read restricted memory CVE-2019-8691, CVE-2019-8692, CVE-2019-8693 - Extracting a zip file containing a symbolic link...
CVE-2019-13403
Temenos CWX version 8.9 has an Broken Access Control vulnerability in the module /CWX/Employee/EmployeeEdit2.aspx, leading to the viewing of user information...
CVE-2017-4989
CVE-2017-4989 affects EMC Avamar Server Software releases listed (7.3.1-125, 7.3.0-233, 7.3.0-226, 7.2.1-32, 7.2.1-31, 7.2.0-401). Root cause: unauthenticated remote bypass of authentication to access the system maintenance page, enabling viewing of sensitive info and execution of maintenance tas...
уязвимость в AlaCart Version 2.18
Обнаружена уязвимость в системе AlaCart Version 2.18 Software / Application - Alabanza AlaCart Shopping Cart Problem-Type - удаленная Vulnerability - просмотр информации о транзакциях. Vendor - alabanza.com Risk / Severity - низкий Exploit -...