33 matches found
EUVD-2015-4923
Malware in sbrugna...
EUVD-2011-3131
Malware in sbrugna...
EUVD-2016-6426
Malware in sbrugna...
Netgear WNR614 安全漏洞
The NETGEAR WNR614 is an N300 wireless router with external antenna from Netgear USA. The NETGEAR WNR614 suffers from an information disclosure vulnerability that originates from allowing an attacker to bypass authentication and access the management interface via an unspecified vector. No detail...
CVE-2023-34576
SQL injection vulnerability in updatepos.php in PrestaShop opartfaq through 1.0.3 allows remote attackers to run arbitrary SQL commands via unspedified vector...
ASUSTOR Data Master 命令注入漏洞
ASUSTOR Data Master is a specialized operating system on ASUSTOR NAS from ASUS, China. ASUSTOR Data Master suffers from a command injection vulnerability that stems from the Printer service feature failing to properly filter constructed command special characters, commands, etc. The vulnerability...
goproxy 资源管理错误漏洞
goproxy is an HTTP proxy library for Go. A security vulnerability exists in goproxy v1.1, which can be exploited by an attacker to cause a denial of service DoS via an unspecified vector...
Synology DiskStation Manager 安全特征问题漏洞
Synology DiskStation Manager DSM is an operating system for use on Network Storage Servers NAS from Synology, a Chinese company. This operating system manages information such as data, files, photos, music, and more. A security feature issue vulnerability exists in Synology DiskStation Manager...
Cybozu Office Access Control Error Vulnerability
Cybozu Office is a Web-based, cross-platform collaboration solution from Cybozu. An Access Control Error vulnerability exists in Cybozu Office, which stems from improper access restrictions in Cabinet, and can be exploited by an attacker to gain access to Cabinet data via an unspecified vector...
Cybozu Office 安全漏洞
Cybozu Office is a Web-based, cross-platform collaboration solution from Cybozu. Cybozu Office suffers from an authorization issue vulnerability that originates from an improperly restricted operation in Project, which can be exploited by an attacker to alter Project's data via an unspecified...
Bluedon Internet Access Detector 信息泄露漏洞
Bluedon Internet Access Detector is an Internet Access Detector from Bluedon China. A security vulnerability exists in Bluedon Internet Access Detector v1.0, which can be exploited by an attacker to access the contents of a password file via an unspecified vector...
CVE-2022-21823
A insecure storage of sensitive information vulnerability exists in Ivanti Workspace Control 2021.2 10.7.30.0 that could allow an attacker with locally authenticated low privileges to obtain key information due to an unspecified attack vector...
elecom lan 操作系统命令注入漏洞
elecom lan routers is a router from Elecom Japan. An operating system command injection vulnerability exists in elecom lan routers, which can be exploited by an attacker to execute arbitrary operating system commands via an unspecified vector...
elecom lan 跨站脚本漏洞
elecom lan routers is a router from Elecom Japan. A cross-site scripting vulnerability exists in elecom lan routers, which can be exploited by an attacker to inject arbitrary script via an unspecified vector...
MIK.starlight has unspecified vulnerabilities
MIK.starlight is the departmental access and creation dashboard, reporting and planning environment. A security vulnerability exists in MIK.starlight version 7.9.5.24363, which stems from the use of hard-coded keys in the software, which allows an attacker to decrypt credentials via an unspecifie...
vaadin 代码问题漏洞
vaadin vaadin is an open source platform for web application development from Finnish company vaadin. the vaadin platform consists of a set of web components, a Java web framework, and a set of tools and application launchers. vaadin is an open source platform for web application development from...
CVE-2021-20742
Cross-site scripting vulnerability in EC-CUBE Business form output plugin for EC-CUBE 3.0 series versions prior to version 1.0.1 allows a remote attacker to inject an arbitrary script via unspecified vector...
CVE-2021-20742
Cross-site scripting vulnerability in EC-CUBE Business form output plugin for EC-CUBE 3.0 series versions prior to version 1.0.1 allows a remote attacker to inject an arbitrary script via unspecified vector...
vaadin-server 跨站脚本漏洞
Vaadin-server is a Vaadin open source application . A platform for rapid development of Web applications on the Java backend . A security vulnerability exists in vaadin-server versions 7.4.0 through 7.7.19, which can be exploited by an attacker to inject malicious JavaScript via an unspecified...
Weseek GROWI 跨站脚本漏洞
WESEEK GROWI is a suite of team collaboration software from Weseek Japan. A cross-site scripting vulnerability exists in WESEEK GROWI, which can be exploited by a remote attacker to inject arbitrary script via an unspecified vector...