11 matches found
IBM API Connect 安全漏洞
IBM API Connect APIConnect is a suite of integrated solutions for managing the API lifecycle from International Business Machines IBM. The product supports creating, running, managing, and securing APIs, microservices, and more. A security vulnerability exists in IBM API Connect versions 10.0.8.0...
APEUni PTE Exam Practice App 安全漏洞
APEUni PTE Exam Practice App is a practice and tutoring app designed for PTE exam takers by China's APEUni. A security vulnerability exists in APEUni PTE Exam Practice App version 10.8.0 and earlier, which stems from an improperly exported AndroidManifest.xml file and could lead to a local attack...
IBM Security Verify Information Queue 安全漏洞
IBM Security Verify Information Queue is a microservices architecture integration platform that leverages Kafka technology and a publish/subscribe model to integrate data between IBMSecurity products, acting as a cross-product data exchange hub. A denial of service vulnerability exists in IBM...
WordPress Greenshift plugin <= 10.8 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis Patchstack Alliance in WordPress Plugin Greenshift versions = 10.8...
WordPress Salon Booking System plugin <= 10.8.1 - Open Redirection vulnerability
Open Redirection vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin Salon booking system versions = 10.8.1...
Thales SafeNet Authentication Client Security Vulnerability
Thales Group Thales Safenet Authentication Client is an authentication client from Thales Group, France. A security vulnerability exists in Thales SafeNet Authentication Client versions prior to 10.8 R10 that originates from a vulnerability that allows an attacker to execute code at the system...
CVE-2023-0261
The WP TripAdvisor Review Slider WordPress plugin before 10.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber...
CVE-2022-38184
There is an improper access control vulnerability in Portal for ArcGIS versions 10.8.1 and below which could allow a remote, unauthenticated attacker to access an API that may induce Esri Portal for ArcGIS to read arbitrary URLs...
PT-2021-7369 · Unknown · Go-Ethereum
Name of the Vulnerable Software and Affected Versions: go-ethereum versions prior to v1.10.8 Description: A consensus-vulnerability in go-ethereum Geth could cause a chain split, where vulnerable versions refuse to accept the canonical chain. This issue is related to a memory-corruption bug withi...
GitLab Access Control Error Vulnerability (CNVD-2020-03229)
GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Enterprise and...
CVE-2018-10650
There is an Insufficient Path Validation Vulnerability in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3...