Lucene search
K

32 matches found

BDU FSTEC
BDU FSTEC
added 2020/08/05 12:0 a.m.6 views

The vulnerability of the Settings component of the Oracle Advanced Outbound Telephony application allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the Settings component of the Oracle Advanced Outbound Telephony application is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain read, modify, add, or delete access to data using the HTTP protocol...

8.2CVSS7.7AI score0.01256EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/02/10 5:54 p.m.61 views

CVE-2019-19670

CVE-2019-19670 affects the Web Settings component of the Web File Manager in Rumpus FTP Server 8.2.9.1. The issue is an HTTP Response Splitting vulnerability that can enable stored XSS and defacement through crafted headers sent to RAPR/WebSettingsGeneralSet.html. Multiple connected sources corro...

6.1CVSS6.1AI score0.00724EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2018/09/14 12:0 a.m.3 views

razorCMS Settings Component Cross-Site Scripting Vulnerability

razorCMS is an open source content management system written in PHP, which stores all data in flat files, so there is no need to install a database. A cross-site scripting vulnerability exists in the Settings component of razorCMS version 3.4.7, which can be exploited by a remote attacker to...

5.4CVSS5.5AI score0.0058EPSS
Exploits1References1
OSV
OSV
added 2018/09/12 4:29 p.m.5 views

CVE-2018-16727

razorCMS 3.4.7 allows Stored XSS via the keywords of the homepage within the settings component...

5.4CVSS5.8AI score0.0058EPSS
Exploits1References1
OSV
OSV
added 2018/09/12 4:29 p.m.4 views

CVE-2018-16726

razorCMS 3.4.7 allows HTML injection via the description of the homepage within the settings component...

5.4CVSS5.8AI score0.0058EPSS
Exploits1References1
Prion
Prion
added 2018/09/12 4:29 p.m.13 views

Design/Logic Flaw

razorCMS 3.4.7 allows HTML injection via the description of the homepage within the settings component...

3.5CVSS5.7AI score0.0058EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/09/12 4:0 p.m.13 views

CVE-2018-16726

razorCMS 3.4.7 allows HTML injection via the description of the homepage within the settings component...

5.7AI score0.0058EPSS
Exploits1References1
NVD
NVD
added 2011/10/14 10:55 a.m.23 views

CVE-2011-3430

The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to have an unspecified impact by leveraging incorrect configuration display...

9.3CVSS5.7AI score0.01754EPSS
Exploits0References4
Prion
Prion
added 2011/10/14 10:55 a.m.23 views

Design/Logic Flaw

The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to have an unspecified impact by leveraging incorrect configuration display...

9.3CVSS6.1AI score0.01754EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2011/10/14 10:0 a.m.31 views

CVE-2011-3429

The Settings component in Apple iOS before 5 stores a cleartext parental-restrictions passcode in an unspecified file, which might allow physically proximate attackers to obtain sensitive information by reading this file...

5.1AI score0.0037EPSS
Exploits0References4
Cvelist
Cvelist
added 2011/10/14 10:0 a.m.28 views

CVE-2011-3430

The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to have an unspecified impact by leveraging incorrect configuration display...

5.7AI score0.01754EPSS
Exploits0References4
Prion
Prion
added 2007/10/29 10:46 p.m.14 views

Code injection

Unspecified vulnerability in the Settings component in the administration system in Jeebles Directory 2.9.60 allows remote authenticated administrators to execute arbitrary PHP code via unspecified vectors related to settings.inc.php. NOTE: the provenance of this information is unknown; the detai...

6CVSS7.5AI score0.00857EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder