29035 matches found
CVE-2023-22526
CVE-2023-22526 is an authenticated RCE affecting Atlassian Confluence Data Center/Server introduced in 7.19.0. The CVSS 3.1/3.0 data show high impact (C/I/A) with network access and low attack complexity; privileges required are low (per NVD). The vulnerability allows executing arbitrary code wit...
PrestaShop Security Breach
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The program offers multiple payment methods, SMS alerts and product image zoom. A security vulnerability exists in PrestaShop Advanced Loyalty Program: Loyalty Points prior to v2.3.4, which originated fro...
CVE-2023-48926
CVE-2023-48926 affects the PrestaShop extension: 202 ecommerce Advanced Loyalty Program, Loyalty Points before v2.3.4. The vulnerability allows unauthenticated attackers to arbitrarily change an order status. Documents cite a CVSS v3.1 base score of 5.3 (Medium) with impact limited to integrity. ...
CVE-2023-52041
An issue discovered in TOTOLINK X6000R V9.4.0cu.852B20230719 allows attackers to run arbitrary code via the sub410118 function of the shttpd program...
CVE-2023-52041
An issue discovered in TOTOLINK X6000R V9.4.0cu.852B20230719 allows attackers to run arbitrary code via the sub410118 function of the shttpd program...
CVE-2023-48926
An issue in 202 ecommerce Advanced Loyalty Program: Loyalty Points before v2.3.4 for PrestaShop allows unauthenticated attackers to arbitrarily change an order status...
PT-2024-41043 · Hewlett Packard · Hplip
Name of the Vulnerable Software and Affected Versions: hplip affected versions not specified Description: The issue is related to security problems in the hpps program of hplip, specifically due to the fixed /tmp path usage in the prnt/hpps/hppsfilter.c file. Recommendations: At the moment, there...
EulerOS 2.0 SP10 : gcc (EulerOS-SA-2023-3209)
According to the versions of the gcc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in...
EulerOS Virtualization 2.11.0 : shadow (EulerOS-SA-2023-2773)
According to the versions of the shadow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In Shadow 4.13, it is possible to inject control characters into fields provided to the SUID program chfn change finger. Although ...
EulerOS 2.0 SP11 : shadow (EulerOS-SA-2023-2668)
According to the versions of the shadow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Shadow 4.13, it is possible to inject control characters into fields provided to the SUID program chfn change finger. Although it is not...
EulerOS 2.0 SP11 : shadow (EulerOS-SA-2023-2710)
According to the versions of the shadow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Shadow 4.13, it is possible to inject control characters into fields provided to the SUID program chfn change finger. Although it is not...
tentes-raftopoulos.gr Improper Access Control vulnerability OBB-3835900
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
stanal.hr Improper Access Control vulnerability OBB-3835787
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
simplypharm.gr Improper Access Control vulnerability OBB-3835708
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
rathmoreparish.ie Improper Access Control vulnerability OBB-3835569
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
polychronioulaw.gr Improper Access Control vulnerability OBB-3835483
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
pk-cakovec.hr Improper Access Control vulnerability OBB-3835463
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
pip.hr Improper Access Control vulnerability OBB-3835460
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
oraiokastro.gr Improper Access Control vulnerability OBB-3835287
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
omarket.gr Improper Access Control vulnerability OBB-3835259
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...