11 matches found
Logpoint 安全漏洞
Logpoint is a network security application from the Danish company Logpoint. A security vulnerability exists in Logpoint versions prior to 7.6.0 that stems from a path traversal vulnerability when creating layout templates, which could lead to remote code execution...
CVE-2024-11852
The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid, Carousel and Remote Arrows plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the getlayouts function in all versions up to, and including, 5.10.12. This makes it...
CVE-2024-11852
The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid, Carousel and Remote Arrows plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the getlayouts function in all versions up to, and including, 5.10.12. This makes it...
CVE-2024-11852 Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.10.12 - Missing Authorization
The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid, Carousel and Remote Arrows plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the getlayouts function in all versions up to, and including, 5.10.12. This makes it...
CVE-2024-11852 Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) <= 5.10.12 - Missing Authorization
The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid, Carousel and Remote Arrows plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the getlayouts function in all versions up to, and including, 5.10.12. This makes it...
PT-2024-17293 · WordPress · Element Pack Elementor Addons
Name of the Vulnerable Software and Affected Versions: Element Pack Elementor Addons plugin for WordPress versions up to, and including, 5.10.12 Description: The issue is related to unauthorized access of data due to a missing capability check on the get layouts function. This allows authenticate...
The vulnerability of the Layout Templates component of the Oracle BI Publisher software allows a malicious individual to gain access to, modify, or delete data.
The vulnerability of the Layout Templates component in the Oracle BI Publisher reporting software lies in insufficient validation of input data. Exploiting this vulnerability could allow an attacker to gain read access, modify data, or even delete data...
PT-2024-6952 · Oracle · Oracle Bi Publisher
Name of the Vulnerable Software and Affected Versions: Oracle BI Publisher versions 7.0.0.0.0 through 7.6.0.0.0 Oracle BI Publisher version 12.2.1.4.0 Description: The issue is related to insufficient input validation in the Layout Templates component of Oracle BI Publisher. This can be exploited...
The vulnerability of the Layout Templates component of the Oracle BI Publisher software allows a malicious individual to gain access to read, modify, add, or delete data.
The vulnerability of the Layout Templates component in the Oracle BI Publisher reporting software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read, modify, add, or delete data using the HTTP protocol...
Unspecified Vulnerability in Oracle Fusion Middleware BI Publisher Layout Templates Component
Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's Oracle business innovation platform for enterprise and cloud environments. The platform provides middleware, software collection and other functions. BI Publisher formerly known as XML Publisher is one of the reporting...
CVE-2020-14696
Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware component: Layout Templates. Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...