293 matches found
PT-2024-2959 · Ruijie · Ruijie Rg-Nbr700Gw
Name of the Vulnerable Software and Affected Versions: Ruijie RG-NBR700GW version 10.34b12 Description: The issue is related to a lack of cookie verification when resetting the password, resulting in an administrator password reset vulnerability. An attacker can exploit this to log in to the devi...
CVE-2024-2352
A vulnerability, which was classified as critical, has been found in 1Panel up to 1.10.1-lts. Affected by this issue is the function baseApi.UpdateDeviceSwap of the file /api/v1/toolbox/device/update/swap. The manipulation of the argument Path with the input 123123123\nopen -a Calculator leads to...
PT-2024-12897 · Softwarex · Softwarex
Name of the Vulnerable Software and Affected Versions: SoftwareX version 11.3 Description: The issue is related to authentication bypass when an OAuth2 Client uses client secret jwt as its authentication method. This can be exploited via specially crafted requests. Recommendations: For version...
PT-2024-13670 · Buffalo · Buffalo Ls210D
Name of the Vulnerable Software and Affected Versions: Buffalo LS210D version 1.78-0.03 Description: The issue allows a remote authenticated attacker to inject arbitrary commands onto the NAS as root due to command injection in the ping utility. Recommendations: For Buffalo LS210D version...
PT-2024-19026 · Flycms · Flycms
Name of the Vulnerable Software and Affected Versions: FlyCms through abbaa5a Description: The issue allows XSS via the permission management feature. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was...
PT-2023-15289 · Siemens · Sinamics Sm120 +6
Name of the Vulnerable Software and Affected Versions: SIMATIC PC-Station Plus All versions SIMATIC S7-400 CPU 412-2 PN V7 All versions SIMATIC S7-400 CPU 414-3 PN/DP V7 All versions SIMATIC S7-400 CPU 414F-3 PN/DP V7 All versions SIMATIC S7-400 CPU 416-3 PN/DP V7 All versions SIMATIC S7-400 CPU...
PT-2023-9538 · Oracle · Oracle E-Business Suite +1
Name of the Vulnerable Software and Affected Versions: Oracle Process Manufacturing Product Development versions 12.2.13 through 12.2.14 Description: The issue is related to weaknesses in the authorization procedure of the Quality Manager Specification component in Oracle Process Manufacturing...
documentalmarisa.com Improper Access Control vulnerability OBB-3797494
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
PT-2023-8978 · Unknown · Ce Phoenix
Name of the Vulnerable Software and Affected Versions: CE Phoenix versions 1.0.8.20 Description: The issue is related to incorrect code generation management in the /admin/define language.php script of the CE Phoenix e-commerce software. This allows a remote attacker to execute arbitrary code by...
PT-2023-8195 · Artifex +9 · Artifex Ghostscript +9
Name of the Vulnerable Software and Affected Versions: Artifex Ghostscript versions through 10.02.0 Description: An issue was discovered in the function gdev prn open printer seekable that allows remote attackers to crash the application via a dangling pointer, which is related to the use of memo...
UBUNTU-CVE-2023-46250
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions 3.7.0 through 3.16.4 can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a single core of the CPU by 100%. It does not affec...
CVE-2023-36857 Baker Hughes Bently Nevada 3500 System Authentication Bypass by Capture-replay
Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05 contains a replay vulnerability which could allow an attacker to replay older captured packets of traffic to the device to gain access...
PT-2023-6386 · Webkitgtk +9 · Webkitgtk +9
Name of the Vulnerable Software and Affected Versions: WebKitGTK versions 2.40.5 Description: A use-after-free vulnerability exists in the MediaRecorder API of WebKitGTK, which can be exploited by a specially crafted web page to cause memory corruption and potentially arbitrary code execution. A...
PT-2023-28584 · WordPress · User Activity Log
Name of the Vulnerable Software and Affected Versions: User Activity Log WordPress plugin versions prior to 1.6.7 Description: The issue allows an attacker to manipulate the client IP address value retrieved by the plugin, potentially hiding the source of malicious traffic. This is due to the...
PT-2023-22921 · Hashicorp +1 · Hashicorp Nomad +2
Name of the Vulnerable Software and Affected Versions: HashiCorp Nomad and Nomad Enterprise versions 0.7.0 through 1.5.6 HashiCorp Nomad and Nomad Enterprise version 1.4.10 Description: A vulnerability in HashiCorp Nomad and Nomad Enterprise allows an ACL policy using a block without a label to...
PT-2023-5821 · D Link · D-Link Dir-3040
Name of the Vulnerable Software and Affected Versions: D-Link DIR-3040 versions affected versions not specified Description: The issue is related to a stack-based buffer overflow vulnerability in the SetMyDLinkRegistration function of the D-Link DIR-3040 router's prog.cgi binary. This vulnerabili...
PT-2023-25019 · Unknown · Thinkadmin
Name of the Vulnerable Software and Affected Versions: ThinkAdmin version 6 Description: An arbitrary file upload issue in the "api/upload.php" endpoint allows attackers to execute arbitrary code via a crafted file. Recommendations: For ThinkAdmin version 6, consider disabling the /api/upload.php...
PT-2023-23456 · Unknown · Agshome Smart Alarm
Name of the Vulnerable Software and Affected Versions: AGShome Smart Alarm version 1.0 Description: The issue is related to weak security in the transmitter, allowing attackers to gain full access to the system via a code replay attack. Recommendations: For AGShome Smart Alarm version 1.0, consid...
PT-2023-23371 · Unknown · Pharmacy Management System
Name of the Vulnerable Software and Affected Versions: Pharmacy Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the email parameter at the login core.php file. Recommendations: For Pharmacy Management System...
CVE-2023-29195 Vitess VTAdmin users that can create shards can deny access to other functions
Vitess is a database clustering system for horizontal scaling of MySQL through generalized sharding. Prior to version 16.0.2, users can either intentionally or inadvertently create a shard containing / characters from VTAdmin such that from that point on, anyone who tries to create a new shard fr...