MyBB 安全漏洞

MyBB MyBulletinBoard is a free and web-based forum software developed by MYBB team using PHP and MySQL. The software is characterized by its simplicity, multi-language support and extensibility. A security vulnerability exists in MyBB version 1.8.38, which stems from the mishandling of the Change...

BURG-WCHTER KG de.burgwachter.keyapp.app 安全漏洞

BURG-WCHTER KG de.burgwachter.keyapp.app is a firmware program from BURG-WCHTER KG. A security vulnerability exists in BURG-WCHTER KG de.burgwachter.keyapp.app version 4.5.0, which originated from a problem, that could allow a remote attacker to obtain sensitive information through the firmware...

WAGO Series PFC100 and WAGO Series PFC200 Improper Access Control Vulnerability

The WAGO Series PFC100 and WAGO Series PFC200 are programmable logic controllers from WAGO Germany. An improper access control vulnerability exists in the WAGO Series PFC100 and WAGO Series PFC200, which can be exploited by a remote attacker by sending a specially crafted HTTP request to determin...

WordPress ThemeMakers SmartIT Premium Responsive theme Information Disclosure Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.ThemeMakers SmartIT Premium Responsive theme is a responsive website theme plugin used in it. A security vulnerability exists in...

The vulnerability of the iOS operating system, the multimedia player iTunes, and the web browser Safari allows attackers to obtain confidential information.

The vulnerability of the WebKit component of the iOS operating system, the multimedia player iTunes, and the browser Safari is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain confidential information...

CVE-2016-5730

phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to obtain sensitive information via vectors involving 1 an array value to FormDisplay.php, 2 incorrect data to validate.php, 3 unexpected data to Validator.php, 4 a missing config directory...

The vulnerability of the PHP interpreter allows attackers to cause errors in the application’s operation.

The vulnerability of the PHP format printer component is related to the repeated release of memory. Exploiting this vulnerability can allow a remote attacker to cause an error in the application’s operation...

wss4j: Apache WSS4J is vulnerable to Bleichenbacher's attack (incomplete fix for CVE-2011-2487)

It was found that a prior countermeasure in Apache WSS4J for Bleichenbacher's attack on XML Encryption CVE-2011-2487 threw an exception that permitted an attacker to determine the failure of the attempted attack, thereby leaving WSS4J vulnerable to the attack. The original flaw allowed a remote...

Microsoft IIS 4.0/5.0/6.0 - Internal IP Address/Internal Network Name Disclosure

source: https://www.securityfocus.com/bid/3159/info A vulnerability has been discovered in Microsoft IIS that may disclose the internal IP address or internal network name to remote attackers. This vulnerability can be exploited if an attacker connects to a host using HTTPS typically on port 443...