EUVD-2002-0672

Malware in sbrugna...

CVE-2024-9865

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘epbookingattendeefields’ fields in all versions up to, and including, 4.0.4.7 due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2024-9865

CVE-2024-9865 : EventPrime – Events Calendar, Bookings and Tickets (WordPress) is vulnerable to unauthenticated stored XSS via ep_booking_attendee_fields in all versions up to 4.0.4.7. The issue arises from insufficient input sanitization and output escaping, enabling script injection that runs w...

CVE-2024-9865 EventPrime – Modern Events Calendar, Bookings and Tickets <= 4.0.4.7 - Unauthenticated Stored Cross-Site Scripting via Transaction Log

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘epbookingattendeefields’ fields in all versions up to, and including, 4.0.4.7 due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2024-9865 EventPrime – Modern Events Calendar, Bookings and Tickets <= 4.0.4.7 - Unauthenticated Stored Cross-Site Scripting via Transaction Log

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘epbookingattendeefields’ fields in all versions up to, and including, 4.0.4.7 due to insufficient input sanitization and output escaping. This makes it possible for...

Microsoft SQL Server Transaction Log are not truncated due to an error code 0x80004005 [TLS 1.0]

Challenge When backing up a machine running a Microsoft SQL server where TLS 1.0 has been disabled, a job may fail with the error code 0x80004005 TLS 1.0. The following warning will be found on the server that is being protected by either Veeam Backup & Replication or Veeam Agent for Microsoft...

CVE-2018-19855

UiPath Orchestrator before 2018.3.4 allows CSV Injection, related to the Audit export, Robot log export, and Transaction log export features...

CVE-2018-19855

CVE-2018-19855 affects UiPath Orchestrator versions prior to 2018.3.4. The vulnerability is described as a CSV Injection related to the Audit export, Robot log export, and Transaction log export features. Supported connected sources reiterate the same impact and affected version line; no addition...

Microsoft Windows - &#039;CmpAddRemoveContainerToCLFSLog&#039; Arbitrary File/Directory Creation

Windows: CmpAddRemoveContainerToCLFSLog Arbitrary File/Directory Creation EoP Platform: Windows 10 1809 not tested earlier Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: User boundary Summary: The kernel’s CmpAddRemoveContainerToCLFSLog function doesn’t...

How to Change Where SQL Transaction Log Backups Are Temporarily Stored on SQL Server

Purpose This article documents how to change the location where SQL transaction log backups are temporarily stored on a SQL server before being transferred to the repository. This article is relevant to the following parent-job types where SQL Transaction Log Backup can be used as a child-job:...

Collected SQL Server transaction logs do not match any existing database backup: SQLINSTANCE\DATABASE

Challenge A SQL Server Transaction Log Backup task fails with the error: Collected SQL Server transaction logs do not match any existing database backup: SQLINSTANCE\DBNAME Copy Cause This error occurs because the collected transaction logs do not match the existing backup of the server. The most...

CVE-2002-0678

CDE ToolTalk database server ttdbserver allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the TTTRANSACTION RPC procedure...