13 matches found
BIT-NGINX-INGRESS-CONTROLLER-2022-41742
NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngxhttpmp4module that might allow a local attacker to cause a worker process crash, or might...
What’s new in Guardicore Centra R26
New improvements to Guardicore Centra make it the fastest and simplest solution to protect against ransomware and meet the needs of zero trust...
McAfee Total Protection Input Validation Error Vulnerability
McAfee Total Protection MTP is a suite of antivirus software from the American company McAfee. A security vulnerability exists in McAfee Total Protection MTP versions prior to 16.0.R26. A local attacker can exploit this vulnerability with a specially crafted object to turn off time scanning...
CVE-2020-7298
Unexpected behavior violation in McAfee Total Protection MTP prior to 16.0.R26 allows local users to turn off real time scanning via a specially crafted object making a specific function call...
McAfee Total Protection Elevation of Privilege Vulnerability (CNVD-2020-53310)
McAfee Total Protection MTP is a suite of antivirus software from the American company McAfee. An elevation of privilege vulnerability exists in versions prior to McAfee MTP 16.0.R26, which can be exploited by a local attacker to unauthoritatively delete files via a malicious script or program...
McAfee Total Protection Backlink Vulnerability
McAfee Total Protection MTP is a suite of antivirus software from the American company McAfee. A security vulnerability exists in McAfee MTP versions prior to 16.0.R26. A local attacker can exploit the vulnerability to delete files without authorization via a malicious script or program...
McAfee Total Protection Elevation of Privilege Vulnerability (CNVD-2020-53311)
McAfee Total Protection MTP is a suite of antivirus software from the American company McAfee. An elevation of privilege vulnerability exists in versions prior to McAfee MTP 16.0.R26, which can be exploited by a local attacker with a malicious script or program to create and edit files in an...
CVE-2020-7283
Privilege Escalation vulnerability in McAfee Total Protection MTP before 16.0.R26 allows local users to create and edit files via symbolic link manipulation in a location they would otherwise not have access to. This is achieved through running a malicious script or program on the target machine...
CVE-2020-7281
Privilege Escalation vulnerability in McAfee Total Protection MTP prior to 16.0.R26 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious...
4x cms <= r26 (Auth Bypass) SQL Injection Vulnerability
No description provided by source. ======================================================= 4x cms = r26 Auth Bypass SQL Injection Vulnerability ======================================================= + 4xcms = r26 Auth Bypass SQL Injection Vulnerability + Discovered by: cr4wl3r + My id:...
4xcms 'login.php' Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/39840/info 4xcms is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromi...
4x CMS r26 - Authentication Bypass
4x CMS r26 - Authentication Bypass ======================================================= 4x cms = r26 Auth Bypass SQL Injection Vulnerability ======================================================= + 4xcms = r26 Auth Bypass SQL Injection Vulnerability + Discovered by: cr4wl3r + My id:...
4x CMS - 'login.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/39840/info 4xcms is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or modi...