34 matches found
EUVD-2017-3197
Malware in sbrugna...
EUVD-2011-4834
Malware in sbrugna...
EUVD-2002-0944
Malware in sbrugna...
EUVD-2012-2721
Malware in sbrugna...
CVE-2024-37622
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting XSS vulnerability via the num parameter at /flow/flow.php...
CVE-2012-2741
Cross-site scripting XSS vulnerability in publichtml/lists/admin/ in phpList before 2.10.18 allows remote attackers to inject arbitrary web script or HTML via the num parameter in a reconcileusers action...
CVE-2024-37622
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting XSS vulnerability via the num parameter at /flow/flow.php...
CVE-2024-37622
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting XSS vulnerability via the num parameter at /flow/flow.php...
PT-2024-27679 · Unknown · Xinhu Rockoa
Name of the Vulnerable Software and Affected Versions: Xinhu RockOA version 2.6.3 Description: A reflected cross-site scripting XSS issue was found in Xinhu RockOA via the num parameter at the "/flow/flow.php" endpoint. Recommendations: For version 2.6.3, avoid using the num parameter in the...
CVE-2024-37622
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting XSS vulnerability via the num parameter at /flow/flow.php...
RockOA Cross-Site Scripting Vulnerability
RockOA Xinhu is an open source office OA system. A cross-site scripting vulnerability exists in Xinhu RockOA v2.6.3, which originates from a cross-site scripting vulnerability in the num parameter on /flow/flow.php...
CVE-2024-37622
Xinhu RockOA v2.6.3 has a reflected XSS vulnerability in the num parameter of /flow/flow.php. The issue is confirmed across multiple sources: Xinhu RockOA v2.6.3, with potential impact to users via an attacker-supplied input reflected in the page. Remediation guidance found in PT-2024-27679 recom...
CVE-2024-37622
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting XSS vulnerability via the num parameter at /flow/flow.php...
CVE-2024-23032
Cross Site Scripting vulnerability in num parameter in eyoucms v.1.6.5 allows a remote attacker to run arbitrary code via crafted URL...
PT-2024-19640 · Eyoucms · Eyoucms
Name of the Vulnerable Software and Affected Versions: eyoucms version 1.6.5 Description: The issue is related to a Cross Site Scripting vulnerability in the num parameter, allowing a remote attacker to run arbitrary code via a crafted URL. Recommendations: For eyoucms version 1.6.5, consider...
CVE-2024-23032
Cross Site Scripting vulnerability in num parameter in eyoucms v.1.6.5 allows a remote attacker to run arbitrary code via crafted URL...
trello-octometric SQL注入漏洞
trello-octometric is a small project by the individual developer Jade Bilkey to execute metrics on trello boards over time. trello-octometric suffers from a SQL injection vulnerability that stems from the fact that incorrect manipulation of the parameter num can lead to sql injection...
PT-2022-27926 · Trendnet · Tew755Ap
Name of the Vulnerable Software and Affected Versions: TRENDnet TEW755AP version 1.13B01 Description: A stack overflow issue was discovered, related to the setlogo num parameter in the icp setlogo img sub 41DBF4 function. Recommendations: For version 1.13B01, as a temporary workaround, consider...
DEBIAN-CVE-2020-6096
An exploitable signed comparison vulnerability exists in the ARMv7 memcpy implementation of GNU glibc 2.30.9000. Calling memcpy on ARMv7 targets that utilize the GNU glibc implementation with a negative value for the 'num' parameter results in a signed comparison vulnerability. If an attacker...
CVE-2017-11582
dayrui FineCms 5.0.9 has SQL Injection via the num parameter in an action=related or action=tags request to libraries/Template.php...