CVE-2018-25084 Ping Identity Self-Service Account Manager SSAMController.java cross site scripting

A vulnerability, which was classified as problematic, has been found in Ping Identity Self-Service Account Manager 1.1.2. Affected by this issue is some unknown functionality of the file src/main/java/com/unboundid/webapp/ssam/SSAMController.java. The manipulation leads to cross site scripting. T...

CVE-2018-25084

CVE-2018-25084 affects Ping Identity Self-Service Account Manager (SSAM) 1.1.2. The issue is a cross-site scripting vulnerability in an unknown SSAMController.java function, exploitable remotely. A fix is available in SSAM 1.1.3, with patch reference f64b10d63bb19ca2228b0c2d561a1a6e5a3bf251. Publ...

PT-2023-10824 · Ping Identity · Ping Identity Self-Service Account Manager

Name of the Vulnerable Software and Affected Versions: Ping Identity Self-Service Account Manager version 1.1.2 Description: A problematic issue has been found in the software, affecting some unknown functionality of the file src/main/java/com/unboundid/webapp/ssam/SSAMController.java. This issue...

Ping Identity Self-Service Account Manager 跨站脚本漏洞

Ping Identity Self-Service Account Manager Ping Identity SSAM is a Java web application from Ping Identity, Inc. It enables users to perform their own account registration, profile updates, and password changes. A cross-site scripting vulnerability exists in Ping Identity Self-Service Account...

CVE-2022-30705

Cross-Site Request Forgery CSRF vulnerability in Pankaj Jha WordPress Ping Optimizer plugin = 2.35.1.2.3 versions...

CVE-2022-30705

Cross-Site Request Forgery CSRF vulnerability in Pankaj Jha WordPress Ping Optimizer plugin = 2.35.1.2.3 versions...

CVE-2022-30705

Cross-Site Request Forgery CSRF vulnerability in Pankaj Jha WordPress Ping Optimizer plugin = 2.35.1.2.3 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Pankaj Jha WordPress Ping Optimizer plugin = 2.35.1.2.3 versions...

CVE-2022-30705

Summary: CVE-2022-30705 affects the WordPress Ping Optimizer plugin by Pankaj Jha, with CSRF in versions <= 2.35.1.2.3. The issue stems from cross-site request forgery handling in the plugin’s admin actions. Impact (as stated): potential CSRF exploitation leading to unauthorized actions within...

CVE-2022-30705 WordPress WordPress Ping Optimizer Plugin <= 2.35.1.2.3 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Pankaj Jha WordPress Ping Optimizer plugin = 2.35.1.2.3 versions...

CVE-2022-30705 WordPress WordPress Ping Optimizer Plugin <= 2.35.1.2.3 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Pankaj Jha WordPress Ping Optimizer plugin = 2.35.1.2.3 versions...

WordPress Plugin WordPress Ping Optimizer 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

PT-2023-13018 · WordPress · Pankaj Jha Wordpress Ping Optimizer

Name of the Vulnerable Software and Affected Versions: Pankaj Jha WordPress Ping Optimizer plugin versions = 2.35.1.2.3 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended...

CVE-2023-25280

OS Command injection vulnerability in D-Link DIR820LA1FW105B03 allows attackers to escalate privileges to root via a crafted payload with the pingaddr parameter to ping.ccp...

CVE-2023-25280

OS Command injection vulnerability in D-Link DIR820LA1FW105B03 allows attackers to escalate privileges to root via a crafted payload with the pingaddr parameter to ping.ccp...

CVE-2023-25280

OS Command injection vulnerability in D-Link DIR820LA1FW105B03 allows attackers to escalate privileges to root via a crafted payload with the pingaddr parameter to ping.ccp...

WordPress WordPress Ping Optimizer Plugin <= 2.35.1.2.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software WordPress Ping Optimizer Type Plugin Vulnerable versions = 2.35.1.2.3 Fixed in 2.35.1.3.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-30705 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 85c31e5709c9 Credits...

Lemur subject to insecure random generation

Overview Lemur was using insecure random generation for its example configuration file, as well as for some utilities. Impact The potentially affected generated items include: | Configuration item | Config option name if applicable | Documentation link if applicable | Rotation option | Code...

D-Link Multiple DIR Devices RCE Vulnerability (Sep 2017)

Multiple D-Link DIR devices are prone to a remote command execution RCE vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

K17157: Apache HTTP server vulnerability CVE-2015-0228

Security Advisory Description The luawebsocketread function in luarequest.c in the modlua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service child-process crash by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade...