9 matches found
Tenable Agent 安全漏洞
Tenable Agent is a vulnerability scanning program from Tenable USA. Tenable Agent has an elevation of privilege vulnerability, which originates from a non-administrative user deleting arbitrary local system files with SYSTEM privileges, and can be exploited by an attacker to tamper with the syste...
CVE-2022-1514
Stored XSS via upload plugin functionality in zip format in GitHub repository neorazorx/facturascripts prior to 2022.06. Cross-site scripting attacks can have devastating consequences. Code injected into a vulnerable application can exfiltrate data or install malware on the user's machine...
CVE-2022-1514 Stored XSS via upload plugin functionality in zip format in neorazorx/facturascripts
Stored XSS via upload plugin functionality in zip format in GitHub repository neorazorx/facturascripts prior to 2022.06. Cross-site scripting attacks can have devastating consequences. Code injected into a vulnerable application can exfiltrate data or install malware on the user's machine...
GHSA-8WP2-VXPG-XCVP Cross site scripting in facturascripts
facturasripts is an open source ERP software. Store XSS in title parameter executing at EditUser Page & EditProducto page in GitHub repository neorazorx/facturascripts prior to 2022.04. Cross-site scripting attacks can have devastating consequences. Code injected into a vulnerable application can...
Ruby: XSS exploit of RDoc documentation generated by rdoc
Vulnerability description not provided...
Unauthorized Access Vulnerability in uni-app of Digital Paradise (Beijing) Network Technology Co.
uni-app is a framework for developing all front-end applications using Vue.js, developers write a set of code that can be published to H5, and a variety of small programs WeChat/Alipay/Baidu/Headline/QQ/Pin/Nail/Taobao, fast apps and other platforms, and can be directly packaged in HBuilderX to...
CVE-2018-0712
Command injection vulnerability in LDAP Server in QNAP QTS 4.2.6 build 20171208, QTS 4.3.3 build 20180402, QTS 4.3.4 build 20180413 and their earlier versions could allow remote attackers to run arbitrary commands or install malware on the NAS...
New Vulnerability Exploits Antivirus Programs to Install Malware
By Waqas It is common notion that antivirus software keeps our computers This is a post from HackRead.com Read the original post: New Vulnerability Exploits Antivirus Programs to Install Malware...
Watch Out! First-Ever Word Macro Malware for Apple Mac OS Discovered in the Wild
After targeting Windows-based computers over the past few years, hackers are now shifting their interest to Macs as well. The emergence of the first macro-based Word document attack against Apple's macOS platform is the latest example to prove this. The concept of Macros dates back to 1990s. You...