40 matches found
EUVD-2021-18653
Malware in sbrugna...
EUVD-2023-30891
Malicious code in bioql PyPI...
EUVD-2024-19673
Malicious code in bioql PyPI...
EUVD-2023-28143
Malicious code in bioql PyPI...
CVE-2024-22076
MyQ Print Server before 8.2 patch 43 allows remote authenticated administrators to execute arbitrary code via PHP scripts that are reached through the administrative interface...
CVE-2023-27107
Incorrect access control in the runReport function of MyQ Solution Print Server before 8.2 Patch 32 and Central Server before 8.2 Patch 22 allows users who do not have appropriate access rights to generate internal reports using a direct URL...
CVE-2023-24080
A lack of rate limiting on the password reset endpoint of Chamberlain myQ v5.222.0.32277 on iOS allows attackers to compromise user accounts via a bruteforce attack...
CVE-2021-31769
MyQ Server in MyQ X Smart before 8.2 allows remote code execution by unprivileged users because administrative session data can be read in the %PROGRAMFILES%\MyQ\PHP\Sessions directory. The "Select server file" feature is only intended for administrators but actually does not require authorizatio...
Concrete CMS Vulnerable to Cross-Site Request Forgery (CSRF) and Cross-Site Scripting (XSS)
Concrete CMS version 9 below 9.4.0RC2 and versions below 8.5.20 are vulnerable to CSRF and XSS in the Concrete CMS Address attribute because addresses are not properly sanitized in the output when a country is not specified. Attackers are limited to individuals whom a site administrator has...
The vulnerability of the Chamberlain myQ gate control device’s software lies in its insufficient attempt-limiting mechanism. This allows a intruder to circumvent existing security measures through brute-force attacks.
The vulnerability of the Chamberlain myQ gate control device’s software is related to insufficient restrictions on authentication attempts. Exploiting this vulnerability could allow a malicious actor to circumvent existing security measures through brute-force attacks...
The vulnerability of the control interface of the MyQ Print Server allows a hacker to execute arbitrary code.
The vulnerability of the MyQ Print Server’s management interface is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...
The vulnerability of the MyQ Print Server printing server lies in its improper handling of code generation, allowing attackers to execute arbitrary codes.
The vulnerability of the MyQ Print Server printer server is related to improper management of code generation. Exploiting this vulnerability allows a remote attacker to generate arbitrary codes...
CVE-2024-22076
MyQ Print Server before 8.2 patch 43 allows remote authenticated administrators to execute arbitrary code via PHP scripts that are reached through the administrative interface...
CVE-2024-22076
MyQ Print Server before 8.2 patch 43 allows remote authenticated administrators to execute arbitrary code via PHP scripts that are reached through the administrative interface...
Information disclosure
MyQ Print Server before 8.2 patch 43 allows remote authenticated administrators to execute arbitrary code via PHP scripts that are reached through the administrative interface...
CVE-2024-22076
MyQ Print Server before 8.2 patch 43 allows remote authenticated administrators to execute arbitrary code via PHP scripts that are reached through the administrative interface...
MyQ Solution Print Server Security Vulnerability
MyQ Solution Print Server is an easy-to-use print management software from MyQ Solution. It allows you to control your printers, reduce printing costs, and be environmentally friendly by reducing unnecessary waste. A security vulnerability exists in MyQ Solution Print Server prior to version 8.2...
CVE-2024-22076
CVE-2024-22076 affects MyQ Print Server prior to version 8.2 patch 43. The vulnerability allows remote authenticated administrators to execute arbitrary code via PHP scripts accessed through the administrative interface, due to weaknesses in the administrative workflow. The CVSS-derived impact is...
PT-2024-2633 · Unknown · Myq Print Server
Name of the Vulnerable Software and Affected Versions: MyQ Print Server versions prior to 8.2 patch 43 Description: The issue is related to the administrative interface of the MyQ Print Server, where remote authenticated administrators can execute arbitrary code via PHP scripts. This is due to...
PT-2024-22: (Unauth Remote Code Execution) in MyQ Print Server
The vulnerability was identified in MyQ Print Server, versions 8.2 patch 43. An Unauthenticated Remote Code Execution vulnerability can be exploited by an attacker to gain elevated privileges on the target server. Vulnerability status: Confirmed by vendor Date of vulnerability detection: 25.12.20...