Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:48 a.m.10 views

CVE-2023-32365

The issue was addressed with improved checks. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, iOS 16.5 and iPadOS 16.5. Shake-to-undo may allow a deleted photo to be re-surfaced without authentication...

2.4CVSS5.8AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:47 a.m.14 views

CVE-2019-6746

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Studio Photo 3.6.6. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

5.5CVSS6AI score0.02649EPSS
Exploits0References1
OSV
OSV
added 2025/04/17 8:15 p.m.10 views

CVE-2025-3765

A vulnerability, which was classified as critical, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. This issue affects some unknown processing of the file /edit-photo.php. The manipulation of the argument Avatar leads to unrestricted upload. The attack may be...

8.8CVSS5.5AI score0.00438EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/04/17 12:0 a.m.16 views

SourceCodester Web-based Pharmacy Product Management System 代码问题漏洞

SourceCodester Web-based Pharmacy Product Management System is a SourceCodester open source Web-based pharmacy product management system. A code issue vulnerability exists in version 1.0 of the SourceCodester Web-based Pharmacy Product Management System, which stems from insufficient validation o...

8.8CVSS6.8AI score0.00438EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.6 views

The vulnerability of the cgiMovePhoto() function (/cgi-bin/photocenter_mgr.cgi) in the software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 allows a hacker to execute arbitrary commands.

The vulnerability of the cgiMovePhoto function /cgi-bin/photocentermgr.cgi in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4,...

9CVSS8.1AI score0.01821EPSS
Exploits1References7
OSV
OSV
added 2024/05/05 6:15 p.m.3 views

CVE-2024-4500

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /Employee/edit-photo.php. The manipulation of the argument userImage leads to unrestricted upload. The attack can be initiated remotely...

8.8CVSS5.5AI score0.00857EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.5 views

PT-2022-21598 · Apple · Ios +3

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.2 iPadOS versions prior to 16.2 macOS Ventura versions prior to 13.1 Description: The issue allows a deleted photo to be re-surfaced without authentication through the shake-to-undo feature. This was addressed with...

5.3CVSS4.7AI score0.00715EPSS
Exploits0References7
Rows per page
Query Builder