16 matches found
CVE-2026-28772 Reflected XSS in IDC_Logging Index endpoint
A Reflected Cross-Site Scripting XSS vulnerability in the /IDCLogging/index.cgi endpoint of International Datacasting Corporation IDC SFX Series SuperFlex SatelliteReceiver Web Management Interface version 101 allows a remote attacker to execute arbitrary web scripts or HTML. The vulnerability is...
CVE-2025-13199
A vulnerability was found in code-projects Email Logging Interface 2.0. Affected is an unknown function of the file signup.cpp. The manipulation of the argument Username results in path traversal: '../filedir'. The attack is only possible with local access. The exploit has been made public and...
EUVD-2025-197700
A vulnerability was found in code-projects Email Logging Interface 2.0. Affected is an unknown function of the file signup.cpp. The manipulation of the argument Username results in path traversal: '../filedir'. The attack is only possible with local access. The exploit has been made public and...
CVE-2025-13199
A vulnerability was found in code-projects Email Logging Interface 2.0. Affected is an unknown function of the file signup.cpp. The manipulation of the argument Username results in path traversal: '../filedir'. The attack is only possible with local access. The exploit has been made public and...
CVE-2025-13199
A vulnerability was found in code-projects Email Logging Interface 2.0. Affected is an unknown function of the file signup.cpp. The manipulation of the argument Username results in path traversal: '../filedir'. The attack is only possible with local access. The exploit has been made public and...
CVE-2025-13199
The provided connected documents describe CVE-2025-13199 as a path traversal vulnerability in code-projects Email Logging Interface 2.0, affecting an unknown function in signup.cpp. An attacker can manipulate the Username argument to traverse directories using ../filedir, with exploitation requir...
CVE-2025-13199 code-projects Email Logging Interface signup.cpp path traversal
A vulnerability was found in code-projects Email Logging Interface 2.0. Affected is an unknown function of the file signup.cpp. The manipulation of the argument Username results in path traversal: '../filedir'. The attack is only possible with local access. The exploit has been made public and...
CVE-2025-13199 code-projects Email Logging Interface signup.cpp path traversal
A vulnerability was found in code-projects Email Logging Interface 2.0. Affected is an unknown function of the file signup.cpp. The manipulation of the argument Username results in path traversal: '../filedir'. The attack is only possible with local access. The exploit has been made public and...
PT-2025-47055
Name of the Vulnerable Software and Affected Versions code-projects Email Logging Interface version 2.0 Description A path traversal issue exists due to the manipulation of the Username argument in an unknown function within the signup.cpp file. This allows for directory traversal using the...
Code-Projects Email Logging Interface 安全漏洞
Code-Projects Email Logging Interface is an email logging interface for Code-Projects. Version 2.0 of Code-Projects Email Logging Interface has a security vulnerability, which stems from incorrect handling of the parameter Username in the signup.cpp file, potentially leading to path traversal...
[SECURITY] Fedora 36 Update: golang-github-hashicorp-hclog-0.15.0-6.fc36
Go-hclog is a package for Go that provides a simple key/value logging interfa ce for use in development and production environments...
[SECURITY] Fedora 36 Update: golang-github-hashicorp-hclog-0.15.0-5.fc36
Go-hclog is a package for Go that provides a simple key/value logging interfa ce for use in development and production environments...
CVE-2021-44792
Single Connect does not perform an authorization check when using the "log-monitor" module. A remote attacker could exploit this vulnerability to access the logging interface. The exploitation of this vulnerability might allow a remote attacker to obtain sensitive information...
Authorization
Single Connect does not perform an authorization check when using the "log-monitor" module. A remote attacker could exploit this vulnerability to access the logging interface. The exploitation of this vulnerability might allow a remote attacker to obtain sensitive information...
Kron Single Connect 安全漏洞
Kron Single Connect is a comprehensive Privileged Access Management Pam software suite from Kron Turkey. It is designed to create a flexible, centrally managed and layered defense security architecture against insider threats. A security vulnerability exists in Kron Single Connect, which stems fr...
OpenJDK: logging insufficient access control checks (Libraries, 6664509)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vecto...