EUVD-2020-29087

Malware in sbrugna...

EUVD-2023-12825

Malicious code in bioql PyPI...

PT-2024-22223 · Delta Electronics +1 · Diaenergie

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue arises from incomplete server-side verification of privileges, allowing users with limited privileges to bypass authorization and access...

CVE-2023-0822

The affected product DIAEnergie versions prior to v1.9.03.001 contains improper authorization, which could allow an unauthorized user to bypass authorization and access privileged functionality...

Authorization

The affected product DIAEnergie versions prior to v1.9.03.001 contains improper authorization, which could allow an unauthorized user to bypass authorization and access privileged functionality...

CVE-2023-0822 Improper Authorization

The affected product DIAEnergie versions prior to v1.9.03.001 contains improper authorization, which could allow an unauthorized user to bypass authorization and access privileged functionality...

CVE-2023-0822 Improper Authorization

The affected product DIAEnergie versions prior to v1.9.03.001 contains improper authorization, which could allow an unauthorized user to bypass authorization and access privileged functionality...

PT-2023-16550 · Unknown · Diaenergie

Name of the Vulnerable Software and Affected Versions: DIAEnergie versions prior to v1.9.03.001 Description: The issue concerns improper authorization in the affected product, which could allow an unauthorized user to bypass authorization and access privileged functionality. Recommendations: For...

Authentication flaw

An issue was discovered on Libre Wireless LS9 LS1.5/p7040 devices. There is a Authentication Bypass in the Web Interface. This interface does not properly restrict access to internal functionality. Despite presenting a password login page on first access, authentication is not required to access...

CVE-2020-8212

Improper access control in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server before 10.9 RP5 allows access to privileged functionality...

Authorization Bypass

java is vulnerable to authorization bypass. The vulnerability exists as it was found that JNLPSecurityManager could silently return without throwing an exception when permission was denied. If the javaws command was used to launch a Java Web Start application that relies on this exception being...

Security Bulletin: IBM Security Access Manager appliances are affected by a security vulnerability (CVE-2016-3051)

Summary IBM Security Access Manager appliances could allow an authenticated user to access some privileged functionality of the server. Vulnerability Details CVEID: CVE-2016-3051 DESCRIPTION: IBM Security Access Manager for Web could allow an authenticated user to access some privileged...

Code injection

IBM Security Access Manager for Web 9.0.0 could allow an authenticated user to access some privileged functionality of the server. IBM X-Force ID: 114714...

Design/Logic Flaw

DotNetNuke 2.0 through 4.8.4 allows remote attackers to load .ascx files instead of skin files, and possibly access privileged functionality, via unknown vectors related to parameter validation...