5 matches found
INDEX ÉDUCATION PRONOTE 安全漏洞
INDEX ÉDUCATION PRONOTE is an educational management platform developed by the French company INDEX ÉDUCATION. Versions of INDEX ÉDUCATION PRONOTE prior to version 2025.2.8 contained security vulnerabilities. These vulnerabilities were due to improper access control, which could allow unverified...
EUVD-2012-0824
Malware in sbrugna...
Yellowfin Insecure Direct Object Reference Vulnerability (CNVD-2021-99268)
An insecure direct object reference vulnerability exists in versions of Yellowfin prior to 9.6.1, a business intelligence automated analytics, cross-vendor narrative and collaboration software suite. An attacker could exploit the vulnerability by sending a specially crafted HTTP GET request to th...
Yellowfin Business Intelligence Yellowfin 安全漏洞
An insecure direct object reference vulnerability exists in versions of Yellowfin prior to 9.6.1, a business intelligence automated analytics, cross-vendor narrative and collaboration software suite. An attacker could exploit the vulnerability by sending a specially crafted HTTP GET request to th...
Joomla Community Builder Enhanced Local File Inclusion
Hello full-disclosure! Description: Joomla CBE suffers from a local file inclusion vulnerability. As CBE also offers file uploading functionality that allows to upload files that contain php-code, this can be used to execute arbitary system-commands on the host with the webservers privileges. Ris...