10 matches found
PT-2025-34576
Name of the Vulnerable Software and Affected Versions: YiFang CMS versions up to 2.0.5 Description: A security issue has been identified in YiFang CMS. The exportInstallTable function within the app/utils/base/database/Migrate.php file is susceptible to information disclosure. This issue can be...
CVE-2020-36668
The JetBackup – WP Backup, Migrate & Restore plugin for WordPress is vulnerable to sensitive information disclosure in versions up to, and including, 1.4.0 due to a lack of proper capability checking on the backupguardgetmanualmodal function called via an AJAX action. This makes it possible for...
CVE-2020-36668
The JetBackup – WP Backup, Migrate & Restore plugin for WordPress is vulnerable to sensitive information disclosure in versions up to, and including, 1.4.0 due to a lack of proper capability checking on the backupguardgetmanualmodal function called via an AJAX action. This makes it possible for...
WordPress plugin JetBackup – WP Backup, Migrate & Restore 信息泄露漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin JetBackup ...
DELL dbutil_2_3.sys 2.3 Arbitrary Write / Privilege Escalation
Exploit Title: DELL dbutil23.sys 2.3 - Arbitrary Write to Local Privilege Escalation LPE Date: 10/05/2021 Exploit Author: Paolo Stagno aka VoidSec Version: include include include include define IOCTLCODE 0x9B0C1EC8 // IOCTLCODE value, used to reach the vulnerable function taken from IDA define...
Ubuntu Update for mysql-dfsg-5.0 vulnerabilities USN-559-1
Ubuntu Update for Linux kernel vulnerabilities USN-559-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5591.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for mysql-dfsg-5.0 vulnerabilities USN-559-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
CVE-2008-2231
SQL injection vulnerability in Slashdot Like Automated Storytelling Homepage Slash aka Slashcode R25094 and earlier allows remote attackers to execute SQL commands and read table information via the id parameter...
Sql injection
SQL injection vulnerability in Slashdot Like Automated Storytelling Homepage Slash aka Slashcode R25094 and earlier allows remote attackers to execute SQL commands and read table information via the id parameter...
CVE-2008-2231
SQL injection vulnerability in Slashdot Like Automated Storytelling Homepage Slash aka Slashcode R25094 and earlier allows remote attackers to execute SQL commands and read table information via the id parameter...
CVE-2008-2231
SQL injection vulnerability in Slashdot Like Automated Storytelling Homepage Slash aka Slashcode R25094 and earlier allows remote attackers to execute SQL commands and read table information via the id parameter...