3 matches found
CVE-2026-12657 LatePoint <= 5.6.2 - Unauthenticated Insecure Direct Object Reference to Arbitrary Creation via 'service_id' Parameter
The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.6.2 via the 'serviceid' parameter due to missing validation on a user controlled key. This makes it possible for...
kernel: RDMA/srpt: Support specifying the srpt_service_guid parameter
A flaw was foundin the Linux Kernel when specifying the srptserviceguid parameter, which may lead to kernel crash...
PT-2024-21762 · Cigesv2 · Cigesv2
Name of the Vulnerable Software and Affected Versions: CIGESv2 affected versions not specified Description: The issue is related to a SQL injection vulnerability in the CIGESv2 system. This vulnerability can be exploited through the /ajaxSubServicios.php endpoint, specifically in the idServicio...