CVE-2026-34929

An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-34927 but exists in a different inter-process communication mechanism. Please note: an attacker must first obtain the ability to...

Tanium Module Server 安全漏洞

The Tanium Module Server is a module server provided by the American company Tanium. There is a security vulnerability present in the Tanium Module Server. This vulnerability stems from an increase in local privileges, which may allow attackers with low-level access rights to the Appliance to...

Account Takeover

Description Hi there i found that forget password functionality can be manipulated and this lead to account takeover. So even if an attacker can takeover low access user to admin accounts. In this bug server is vulnerable to php type juggling attack Proof of Concept 1. While registering app for...

CVE-2021-22361

There is an improper authorization vulnerability in eCNS280 V100R005C00, V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200. A file access is not authorized correctly. Attacker with low access may launch privilege escalation in a specific scenario. This may compromise the normal...

CVE-2021-22361

There is an improper authorization vulnerability in eCNS280 V100R005C00, V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200. A file access is not authorized correctly. Attacker with low access may launch privilege escalation in a specific scenario. This may compromise the normal...

MYRE Real Estate Software Multiple Vulnerabilities

No description provided by source. Title : MYRE Real Estate Software Multiple XSS and SQL Injection Vulnerabilities Author : Sooraj K.S SecPod Technologies www.secpod.com Vendor : http://myrephp.com Advisory : http://secpod.org/blog/?p=346 http://secpod.org/advisories/SECPODMRSSQLXSSVuln.txt...