4 matches found
CVE-2025-53092 Strapi core vulnerable to sensitive data exposure via CORS misconfiguration
Strapi is an open source headless content management system. Strapi versions prior to 5.20.0 contain a CORS misconfiguration vulnerability in default installations. By default, Strapi reflects the value of the Origin header back in the Access-Control-Allow-Origin response header without proper...
PT-2023-5196 · Zoom · Zoom Desktop Client For Windows
Name of the Vulnerable Software and Affected Versions: Zoom Desktop Client for Windows versions prior to 5.15.0 Description: The issue is related to improper input validation, which may allow an unauthorized user to enable an escalation of privilege via network access. This could potentially be...
NETGEAR WAC505 and WAC510 Information Disclosure Vulnerability
Both the NETGEAR WAC505 and NETGEAR WAC510 are a wireless access point AP from NETGEAR. An information disclosure vulnerability exists in the NETGEAR WAC505 version prior to V5.6.8.3 and the WAC510 version prior to V5.6.8.3, which can be exploited by an attacker to obtain sensitive information...
CVE-2019-16743
eBrigade before 5.0 has evenementical.php evenement SQL Injection...