57 matches found
EUVD-2005-3049
Malware in sbrugna...
EUVD-2019-8659
Malware in sbrugna...
EUVD-2021-21114
Malware in sbrugna...
EUVD-2002-1865
Malware in sbrugna...
EUVD-2018-13844
Malware in sbrugna...
EUVD-2016-1974
Malware in sbrugna...
EUVD-2007-5889
Malware in sbrugna...
EUVD-2016-1962
Malware in sbrugna...
CVE-2025-47930 Zulip Server has access control bypass for restrictions on creation of specific channel types
Zulip is an open-source team chat application. Starting in version 10.0 and prior to version 10.3, the "Who can create public channels" access control mechanism can be circumvented by creating a private or web-public channel, and then changing the channel privacy to public. A similar technique...
Linux Distros Unpatched Vulnerability : CVE-2018-10545
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. Dumpable FPM child processes allow bypassing...
PT-2025-5280 · Apple · Apple Macos +1
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.3 macOS versions prior to 14.7.3 macOS versions prior to 15.3 iPadOS versions prior to 17.7.4 Description: The issue is related to insufficient access control in macOS and iPadOS, allowing a remote attacker to...
BIT-MINIO-2022-35919 Authenticated requests for server update admin API allows path traversal in minio
MinIO is a High Performance Object Storage released under GNU Affero General Public License v3.0. In affected versions all 'admin' users authorized for admin:ServerUpdate can selectively trigger an error that in response, returns the content of the path requested. Any normal OS system would allow...
CVE-2023-28895 Hard-coded password for access to power controller chip memory
The password for access to the debugging console of the PoWer Controller chip PWC of the MIB3 infotainment is hard-coded in the firmware. The console allows attackers with physical access to the MIB3 unit to gain full control over the PWC chip. Vulnerability found on Škoda Superb III 3V3 - 2.0 TD...
CVE-2023-23561
Stormshield Endpoint Security 2.3.0 through 2.3.2 has Incorrect Access Control: authenticated users can read sensitive information...
PT-2022-15445 · Ibm · Ibm Security Verify Governance
Name of the Vulnerable Software and Affected Versions: IBM Security Verify Governance, Identity Manager version 10.0.1 Description: The issue allows a local privileged user to read sensitive information, including user credentials, stored in plain clear text. Recommendations: For IBM Security...
CVE-2020-13421
OpenIAM before 4.2.0.3 has Incorrect Access Control for the Create User, Modify User Permissions, and Password Reset actions...
Information disclosure
DBHcms v1.2.0 has a sensitive information leaks vulnerability as there is no security access control in /dbhcms/ext/news/ext.news.be.php, A remote unauthenticated attacker can exploit this vulnerability to get path information...
CVE-2020-19878
CVE-2020-19878 affects DBHcms v1.2.0. The vulnerability is an information-disclosure due to missing security access control in the path /dbhcms/ext/news/ext.news.be.php, allowing a remote unauthenticated attacker to obtain path information. Connected sources corroborate the description across NVD...
CVE-2020-19878
DBHcms v1.2.0 has a sensitive information leaks vulnerability as there is no security access control in /dbhcms/ext/news/ext.news.be.php, A remote unauthenticated attacker can exploit this vulnerability to get path information...
CVE-2020-8113
GitLab 10.7 and later through 12.7.2 has Incorrect Access Control...