Xerte Online Toolkits 安全漏洞

Xerte Online Toolkits is an online learning content creation platform provided by British company Xerte. Versions of Xerte Online Toolkits 3.15 and earlier contained a security vulnerability. This vulnerability stemmed from incomplete input validation at the elFinder connector endpoint, allowing...

PT-2026-2308

Name of the Vulnerable Software and Affected Versions WebErpMesv2 versions prior to 1.19 Description WebErpMesv2 is a Resource Management and Manufacturing execution system Web for industry. Versions prior to 1.19 contain a file upload validation bypass in multiple controllers. This allows...

PT-2024-38037 · WordPress · File Manager Pro – Filester

Name of the Vulnerable Software and Affected Versions: File Manager Pro – Filester plugin for WordPress versions up to, and including, 1.8.2 Description: The issue allows authenticated attackers with granted permissions by an Administrator to update plugin settings for user role restrictions. Thi...

PT-2021-19201 · Yith · Yith Woocommerce Gift Cards Premium

Name of the Vulnerable Software and Affected Versions: YITH WooCommerce Gift Cards Premium plugin versions prior to 3.3.1 Description: The issue allows remote attackers to achieve remote code execution on the operating system in the security context of the web server. To exploit this, an attacker...

AUO SunVeillance Monitoring System 1.1.9e - Incorrect Access Control

AUO SunVeillance Monitoring System 1.1.9e - Incorrect Access Control Exploit Title: AUO SunVeillance Monitoring System 1.1.9e - Incorrect Access Control Date: 2019-10-24 Exploit Author: Luca.Chiou Vendor Homepage: https://www.auo.com/zh-TW Version: AUO SunVeillance Monitoring System all versions...