15 matches found
CVE-2026-40621
ELECOM wireless LAN access point devices do not require authentication to access some specific URLs. The affected product may be operated without authentication...
ELECOM多款产品 安全漏洞
ELECOM WRC-BE72XSD-B is a wireless router produced by the ELECOM company. Several ELECOM products have security vulnerabilities. This vulnerability stems from the ability to access specific URLs without authentication, which may allow devices to be operated without proper authorization. The...
PT-2026-36820
Name of the Vulnerable Software and Affected Versions @clerk/clerk-js versions prior to 5.125.10 @clerk/clerk-js versions prior to 6.7.5 @clerk/shared affected versions not specified @clerk/nextjs affected versions not specified @clerk/backend affected versions not specified Description...
CVE-2020-36159
Veritas Desktop and Laptop Option DLO before 9.5 disclosed operational information on the backup processing status through a URL that did not require authentication...
LlamaIndex 安全漏洞
LlamaIndex is a data framework for LLM applications open-sourced by LlamaIndex. A security vulnerability exists in LlamaIndex that originates from an unauthenticated URL and could lead to infinite recursive calls and denial of service attacks...
LoLLMs Web UI 安全漏洞
LoLLMs Web UI is a web user interface for large languages and multimodal systems by Saifeddine ALOUI Individual Developer. A security vulnerability exists in LoLLMs Web UI version V13, which originates from an unauthenticated URL and could lead to a server-side request forgery attack...
PT-2024-26106 · Sap · Sap Crm Webclient Ui
Name of the Vulnerable Software and Affected Versions: SAP CRM WebClient UI affected versions not specified Description: The issue arises due to insufficient input validation, allowing an unauthenticated attacker to craft a URL link that embeds a malicious script. When a victim clicks on this lin...
FlyteConsole 代码问题漏洞
FlyteConsole is a console component for Flyte. A code issue vulnerability exists in FlyteConsole versions prior to 0.52.0 that stems from vulnerability to server-side request forgery SSRF attacks. An attacker can exploit any user of a vulnerable instance to access an internal metadata server or...
Backdoor.Win32.Zombam.gen Code Execution
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/ff6516c881dee555b0cd253408b64404B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Zombam.gen Vulnerability: Unauthenticated URL Command Injection Description: Zombam...
CVE-2020-36159
Veritas Desktop and Laptop Option DLO before 9.5 disclosed operational information on the backup processing status through a URL that did not require authentication...
CVE-2020-36159
Veritas Desktop and Laptop Option DLO before 9.5 disclosed operational information on the backup processing status through a URL that did not require authentication...
Veritas Desktop and Laptop Option Information Disclosure Vulnerability
Veritas Desktop and Laptop Option is a software from Veritas, USA that provides data backup and endpoint protection features for Windows and Mac desktop and laptop computers. The software supports network-less protection, instant backup, customized failover, self-service restore, and other...
Red Hat Keycloak Server-Side Request Forgery Vulnerability
Red Hat Keycloak is a suite of software from Red Hat, Inc. that provides authentication and management capabilities for modern applications and services. A security vulnerability exists in Red Hat Keycloak. The vulnerability stems from the possibility of forcing the server to request a uri call t...
CVE-2020-9278
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. The device can be reset to its default configuration by accessing an unauthenticated URL...
CVE-2016-8722
An exploitable Information Disclosure vulnerability exists in the Web Application functionality of Moxa AWK-3131A Series Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client. Retrieving a specific URL without authentication can reveal sensitive information to an attacker...