4 matches found
EUVD-2018-2496
Malware in sbrugna...
CVE-2024-38447
NATO NCI ANET 3.4.1 allows Insecure Direct Object Reference via a modified ID field in a request for a private draft report that belongs to an arbitrary user...
Code injection
TestLink through 1.9.16 allows remote attackers to read arbitrary attachments via a modified ID field to /lib/attachments/attachmentdownload.php...
Design/Logic Flaw
optionUpdate.asp in Carbon Communities 2.4 and earlier allows remote attackers to edit arbitrary member information via a modified ID field...