13 matches found
PT-2026-44094
Function calls to WOSCommonUtil.dll!WOSSysInfoGetDeviceInterface in various DLLs i.e., WOSProfileMgrModule.dll, WOSWebDavModule.dll can return a NULL pointer i.e., when no user is logged into the Triofox Server Agent Management Console. The returned NULL pointer is not checked before being...
EUVD-2025-198428
Cross-site request forgery vulnerability exists in LogStare Collector. If a user views a crafted page while logged, unintended operations may be performed...
SonicWALL SonicOS 安全漏洞
SonicWALL SonicOS is a set of operating systems designed for SonicWall firewall appliances from SonicWALL, Inc. A security vulnerability exists in SonicWall SonicOS that stems from the presence of a server-side request forgery vulnerability. A remote attacker can exploit this vulnerability to...
CVE-2022-47560
The lack of web request control on ekorCCP and ekorRCI devices allows a potential attacker to create custom requests to execute malicious actions when a user is logged in...
Design/Logic Flaw
UNSUPPPORTED WHEN ASSIGNED The lack of web request control on ekorCCP and ekorRCI devices allows a potential attacker to create custom requests to execute malicious actions when a user is logged in...
Cisco NX-OS Software CLI Comm Injection (cisco-sa-nxos-cli-cmdinject-euQVK9u)
According to its self-reported version, Cisco NX-OS Software is affected by a vulnerability. - A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. This vulnerability...
CVE-2022-29250 SQL injection in GLPI
GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions prior to version 10.0.1 it is possible to add extra information by SQL injection on search pages. In order to exploit this vulnerability a user...
Cross site scripting
Backdrop CMS version 1.11.0 and earlier contains a Cross Site Scripting XSS vulnerability in Sanitization of custom class names used on blocks and layouts. that can result in Execution of JavaScript from an unexpected source.. This attack appear to be exploitable via A user must be directed to an...
WordPress Plugin Membership Simplified 1.58 - Arbitrary File Download Vulnerability
Arbitrary file download vulnerability found in WordPress Plugin Membership Simplified version 1.58. Plugin does't check whether the user is logged in or not and if logged does it has file download privileges. Solution We were unable to find patched version of this plugin. Also, this plugin remove...
CrystalFTP Pro 2.8 - Remote Buffer Overflow Exploit
No description provided by source. / CrystalFTP Pro v2.8 Buffer Overflow Exploit 04/25/2005 despite the fact that nobody uses CrystalFTP i had to release a new version that replaces the first one. this overwrites the structured exception handler with a pop edx pop eax ret in kernel32.dll. this...
Nmap NSE: SMB Enum Sessions
This script attempts to enumerate the users logged into a system either locally or through an SMB share. This is a wrapper on the Nmap Security Scanner's http://nmap.org smb-enum-sessions.nse. OpenVAS Vulnerability Test $Id: gbnmapsmbenumsessions.nasl 7006 2017-08-25 11:51:20Z teissa $ Wrapper fo...
cyberBB 0.6 - Multiple SQL Injections
Name : cyberBB v. 0.6 Multiply Remote SQL Injection Vulnerabilities Author : cOndemned Dark-Coders Greetz : Avantura, str0ke, ZaBeaTy, voo|doo, irk4z, and many, many more... Conditions : Magic quotes gpc = On & Off / User must be logged into source of /showtopic.php : 21. $id=$REQUEST'id'; 22. 23...
DCP Portal: Multiple XSS Vulnerabilities
=========================================================== DCP Portal: Multiple XSS Vulnerabilities =========================================================== Technical University of Vienna Security Advisory TUVSA-0603-001, March 9, 2006 =========================================================...