32 matches found
The vulnerability of the Settings component of the Oracle Advanced Outbound Telephony application allows a perpetrator to gain access to read, modify, add, or delete data.
The vulnerability of the Settings component of the Oracle Advanced Outbound Telephony application is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain read, modify, add, or delete access to data using the HTTP protocol...
CVE-2019-19670
CVE-2019-19670 affects the Web Settings component of the Web File Manager in Rumpus FTP Server 8.2.9.1. The issue is an HTTP Response Splitting vulnerability that can enable stored XSS and defacement through crafted headers sent to RAPR/WebSettingsGeneralSet.html. Multiple connected sources corro...
razorCMS Settings Component Cross-Site Scripting Vulnerability
razorCMS is an open source content management system written in PHP, which stores all data in flat files, so there is no need to install a database. A cross-site scripting vulnerability exists in the Settings component of razorCMS version 3.4.7, which can be exploited by a remote attacker to...
CVE-2018-16727
razorCMS 3.4.7 allows Stored XSS via the keywords of the homepage within the settings component...
CVE-2018-16726
razorCMS 3.4.7 allows HTML injection via the description of the homepage within the settings component...
Design/Logic Flaw
razorCMS 3.4.7 allows HTML injection via the description of the homepage within the settings component...
CVE-2018-16726
razorCMS 3.4.7 allows HTML injection via the description of the homepage within the settings component...
CVE-2011-3430
The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to have an unspecified impact by leveraging incorrect configuration display...
Design/Logic Flaw
The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to have an unspecified impact by leveraging incorrect configuration display...
CVE-2011-3429
The Settings component in Apple iOS before 5 stores a cleartext parental-restrictions passcode in an unspecified file, which might allow physically proximate attackers to obtain sensitive information by reading this file...
CVE-2011-3430
The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to have an unspecified impact by leveraging incorrect configuration display...
Code injection
Unspecified vulnerability in the Settings component in the administration system in Jeebles Directory 2.9.60 allows remote authenticated administrators to execute arbitrary PHP code via unspecified vectors related to settings.inc.php. NOTE: the provenance of this information is unknown; the detai...