11 matches found
EUVD-2013-2327
Malware in sbrugna...
EUVD-2021-20384
Malware in sbrugna...
EUVD-2024-41670
Malicious code in bioql PyPI...
CVE-2023-42481
In SAP Commerce Cloud - versions HYCOM 1905, HYCOM 2005, HYCOM2105, HYCOM 2011, HYCOM 2205, COMCLOUD 2211, a locked B2B user can misuse the forgotten password functionality to un-block his user account again and re-gain access if SAP Commerce Cloud - Composable Storefront is used as storefront, d...
CVE-2024-51962
A SQL injection vulnerability in ArcGIS Server allows an EDIT operation to modify Column properties allowing for the execution of a SQL Injection by a remote authenticated user with elevated non admin privileges. There is a high impact to integrity and confidentiality and no impact to availabilit...
Open Redirect in openwhyd/openwhyd
āļø Description There is an open redirect in the following URL: https://openwhyd.org/consent?redirect=https://mdakh404.github.io after the user agrees on the site policy, it will be redirected to my blog ! it's an open redirect. šµļøāāļø Proof of Concept 1- Open the link:...
JDK: unspecified vulnerability fixed in 7u75 and 8u31 (Serviceability)
Unspecified vulnerability in Oracle Java SE 7u72 and 8u25 allows local users to affect integrity via unknown vectors related to Serviceability...
CVE-2011-0826
CVE-2011-0826 concerns Oracle PeopleSoft Enterprise versions 8.8 Bundle #13, 8.9 Bundle #7, 9.0 Bundle #7, and 9.1 Bundle #4. It states a remote authenticated attacker can affect integrity via unknown vectors related to the Application Portal. The root cause and exploit details are not provided i...
XSS vuln. in dotNetBB <= v2.4
XSS vuln. in dotNetBB = v2.4 Vuln. discovered by : r0t Date: 25 march 2006 vendor:http://www.dotnetbb.com/ affected versions:2.42EC SP 3 and prior orginal advisory: http://pridels.blogspot.com/2006/03/xss-vuln-in-dotnetbb-v24.html Vuln. Description: dotNetBB contains a flaw that allows a remote...
AtlantForum XSS vuln.
AtlantForum XSS vuln. Vuln. discovered by : r0t Date: 15 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/atlantforum-xss-vuln.html vendor:www.atlantpro.com/atlfm.html affected version:4.02 and prior, also AtlantForum Lite and AtlantForum Pro can have same vuln. Product Description:...
PunBB URL Quote Tag XSS
According to its banner, the remote version of PunBB is vulnerable to cross-site scripting attacks because the application does not validate URL and quote tags. With a specially crafted URL, an attacker may be able to inject arbitrary HTML and script code into a user's browser, resulting in a los...