9 matches found
CVE-2018-25370
CVE-2018-25370 affects Admidio 3.3.5. A cross-site request forgery vulnerability allows low-privilege users to increase permissions by exploiting improper origin checking in roles_function.php. Attacks can craft malicious HTML forms targeting parameters such as rol_assign_roles, rol_approve_users...
CVE-2025-1787
Local admin could to leak information from the Genetec Update Service configuration web page. An authenticated, admin privileged, Windows user could exploit this vulnerability to gain elevated privileges in the Genetec Update Service. Could be combined with CVE-2025-1789 to achieve low privilege...
CVE-2025-55200 BigBlueButton vulnerable to Stored XSS via name of user at Shared Notes
BigBlueButton is an open-source virtual classroom. In versions prior to 3.0.13, the "Shared Notes" feature contains a Stored Cross-Site Scripting XSS vulnerability with the input location being the "Username" field and the output location on the "Shared Notes" page, when a user with a malicious...
EUVD-2017-17192
Malware in sbrugna...
EUVD-2022-3703
Malicious code in bioql PyPI...
Advisory ROSA-SA-2025-2973
software: sudo 1.9.17p1 WASP: ROSA-CHROME unaffected versions = sudo-1.9.17p1-1 affected versions sudo-1.9.17p1-1 CVE-ID: CVE-2025-32462 BDU-ID: 2025-08356 CVE-Crit: LOW CVE-DESC.: A vulnerability in the Sudo system administration program is related to a flaw in the authorization mechanism...
CVE-2025-46544
In Sherpa Orchestrator 141851, a low-privileged user can elevate their privileges by creating new users and roles...
CLSA-2022-1643112395 Fix of CVE: CVE-2021-44038
CVE-2021-44038: low privilege escalation during package installation/update due to insecure chmod in spec file...
Akkadian Provisioning Manager 安全漏洞
Akkadian Provisioning Manager is a provisioning solution from Akkadian USA for new integrations for more robust provisioning automation. A security vulnerability in the SSH console of Akkadian Provisioning Manager 4.50.02 allows an attacker with low-level privileges to escape the Web profile edit...