9 matches found
PT-2026-22721
Name of the Vulnerable Software and Affected Versions Inno Setup versions prior to 6.2.1 Description A privilege escalation issue exists due to a dll hijacking weakness. This allows an attacker to execute arbitrary code with elevated privileges. Recommendations Update to a version newer than 6.2....
CVE-2025-66530 WordPress Webba Booking plugin <= 6.2.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Webba Appointment Booking Webba Booking webba-booking-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Webba Booking: from n/a through = 6.2.1...
CVE-2025-66530 WordPress Webba Booking plugin <= 6.2.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Webba Appointment Booking Webba Booking webba-booking-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Webba Booking: from n/a through = 6.2.1...
CVE-2023-26913
EVOLUCARE ECSIMAGING aka ECS Imaging 6.21.5 is vulnerable to Cross Site Scripting XSS via newmovie. php...
@antora/cli (>=2.3.2 <=3.0.0-alpha.9), @antora/playbook-builder (>=2.3.2 <=3.0.0-alpha.9) +53 more potentially affected by CVE-2022-22143 via convict (>=6.0.0 <=6.2.1)
convict NPM version =6.0.0, =2.3.2, =2.3.2, =2.3.2, =1.6.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.7.0 and more Source cves: CVE-2022-22143 Source advisory: SNYK:JS-CONVICT-2340604...
Gotenberg has an unspecified vulnerability
Gotenberg is a Docker-powered stateless API for converting HTML, Markdown and Office documents to PDF. Gotenberg 6.2.1 and earlier versions are vulnerable. An attacker can exploit this vulnerability to overwrite LibreOffice configuration files and execute arbitrary code via macros...
Fortinet FortiClient Command Injection Vulnerability (CNVD-2019-42446)
Fortinet FortiClient is a mobile endpoint security solution from Fortinet. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance and two-factor authentication when connected to a FortiGate firewall appliance. A command injection vulnerability exists in Fortinet...
DEBIAN-CVE-2017-5659
Apache Traffic Server before 6.2.1 generates a coredump when there is a mismatch between content length and chunked encoding...
CVE-2017-3847
A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface. More Information: CSCvc72741. Known Affected Releases: 6.2.1...