8 matches found
CVE-2025-55314
An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. When pages in a PDF are deleted via JavaScript, the application may fail to properly update internal states. Subsequent annotation management operations assume these states are valid, causing...
EUVD-2008-3474
Malware in sbrugna...
EUVD-2022-2515
Malicious code in bioql PyPI...
WordPress 插件 访问控制错误漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . Listeo WordPress has a security vulnerability before...
The vulnerability of the integration component of the Magento Commerce software development and management platform, related to authentication errors, allows a malicious user to delete CMS pages via the REST API without authentication.
The vulnerability of the integration component of the Magento Commerce software for developing and managing online stores is related to authentication errors. Exploiting this vulnerability allows a malicious actor to delete CMS pages through the REST API without authentication...
forkcms 3.2.5 - Multiple Vulnerabilities
ForkCMS 3.2.5以及更低版本存在CSRF和XSS反射型漏洞。IMB X-Force确认3.2.6版本也存在CSRF漏洞。 1.CSRF ForkCMS 3.2.5存在CSRF漏洞,攻击者可删除admins/users用户,删除网页,并且当授权的admin用户访问包含以下html/javascript代码的网页时可提权: 1.1删除Admins或Users用户 CSRF Exploit to delete ADMIN/USER account 注意第一个能删除的ID是2而不是1。因为1是安装阶段创建的超级管理员,称为"Fork CMS"(ForkCMS 定义了...
To solve the FCKEDITOR to remove all the upload page how to upload invasion-vulnerability warning-the black bar safety net
Long time no script invasion,today for participating in a match,then the certificate actually needs the money to buy,it is very uncomfortable,Baidu took under its official website,for a security,the result is not successful,because the iis file parsing vulnerability patch on,but learned some of t...
CVE-2012-1900
Cross-site request forgery CSRF vulnerability in admin/index.php in RazorCMS 1.2.1 and earlier allows remote attackers to hijack the authentication of administrators for requests that delete arbitrary web pages via a showcats action...