EUVD-2008-1473

Malware in sbrugna...

EUVD-2006-2770

Malware in sbrugna...

CVE-2015-7227

The Fieldable Panels Panes module 7.x-1.x before 7.x-1.7 for Drupal does not properly check permissions to edit Fieldable Panels Panes entities, which allows remote authenticated users to edit panes by leveraging permissions to edit panels...

CVE-2020-35759

bloofoxCMS 0.5.2.1 is infected with a CSRF Attack that leads to an attacker editing any file content Locally/Remotely...

Liberapay: Publicly editable GitHub wikis

Hello team, While browsing https://github.com/liberapay I found that many of the repositories have their wikis publicly editable by any GitHub user. The following are some of the affected repositories: https://github.com/liberapay/cardregistration-js-kit/wiki...

Authentication flaw

Beckhoff TwinCAT 3 supports communication over ADS. ADS is a protocol for industrial automation in protected environments. This protocol uses user configured routes, that can be edited remotely via ADS. This special command supports encrypted authentication with username/password. The encryption...

CVE-2017-16718

Beckhoff TwinCAT 3 uses ADS for communication, where a special command authenticates with a username/password using a fixed encryption key that can be extracted by an attacker. Exploitation requires network access at the moment a route is added. The issue is tied to the ADS routing feature where ...

Drupal Fieldable Panels Panes module security bypass vulnerability

Drupal is a free and open source content management system developed in PHP. Drupal Fieldable Panels Panes fails to check the edit permissions of Fieldable Panels Panes entities, allowing remote attackers to edit panes with the permissions of the edit panel...

CVE-2005-1817

Invision Power Board IPB 1.0 through 1.3 allows remote attackers to edit arbitrary forum posts via a direct request to index.php with modified parameters...