CVE-2021-24730

The Logo Showcase with Slick Slider WordPress plugin before 1.2.5 does not have CSRF and authorisation checks in the lswsssaveattachmentdata AJAX action, allowing any authenticated users, such as Subscriber, to change title, description, alt text, and URL of arbitrary uploaded media...

How to Disable IPv6

You can disable IPv6 on the host computer through theDisabledComponents registry value. TheDisabledComponents registry value affects all network interfaces on the host. Important Follow the steps in this section carefully. Serious problems might occur if you modify the registry incorrectly. Befor...

PHP-Nuke Web_Links Module - cid SQL Injection

PHP-Nuke WebLinks Module - cid SQL Injection source: https://www.securityfocus.com/bid/27894/info The PHP-Nuke WebLinks module is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow...

Очередные дырки в различных Shopping Cart

Обратный путь в директориях позволяет обращаться к системным файлам. В отдельных случаях возможна модификация прайса...

CVE-1999-0308

HP-UX gwind program allows users to modify arbitrary files...