39 matches found
CVE-2024-47227
iRedAdmin before 2.6 allows XSS, e.g., via ordername...
CVE-2024-33124
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the nodeTitle parameter in the parentNode function...
CVE-2024-33124
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the nodeTitle parameter in the parentNode function...
CVE-2024-33122
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the topic parameter in the list function...
CVE-2024-33124
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the nodeTitle parameter in the parentNode function...
CVE-2024-33122
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the topic parameter in the list function...
CVE-2024-33124
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the nodeTitle parameter in the parentNode function...
CVE-2024-33124
The CVE-2024-33124 entry concerns Roothub v2.6, where a SQL injection can be triggered via the nodeTitle parameter in the parentNode() function. Affected component: Roothub 2.6 (Web app using MySQL, per CNNVD). Root cause: unsecured parameter handling leading to SQL injection. Impact per CVSS 3.1...
CVE-2024-33122
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the topic parameter in the list function...
CVE-2024-33122
CVE-2024-33122 affects Roothub v2.6. A SQL injection vulnerability exists in the list() function via the topic parameter, caused by unsafe SQL construction. CVSS 3.1 base score 6.3 (Medium) with Low impact across confidentiality, integrity, and availability. No exploits details are provided in th...
CVE-2024-33121
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the 's' parameter in the search function...
CVE-2024-33121
CVE-2024-33121 affects Roothub v2.6, where the SQL injection vulnerability exists in the search() function through the 's' parameter. Exploitation details are not provided in the documents, but multiple sources corroborate an SQL injection issue in Roothub v2.6. The CVSS v3.1 base score is 6.3 (M...
CVE-2024-33121
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the 's' parameter in the search function...
CVE-2024-31574
The CVE-2024-31574 entry concerns TWCMS v2.6, where a Cross-Site Scripting (XSS) vulnerability could allow a local attacker to execute arbitrary code via a crafted script. The vulnerability is described across multiple sources as XSS affecting TWCMS 2.6, with exploitation requiring local access a...
CVE-2023-22234
Adobe Premiere Rush
Buffer overflow
Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...
CVE-2023-0440 Observable Discrepancy in healthchecks/healthchecks
Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...
GHSA-HRHX-6H34-J5HC Skip the router TLS configuration when the host header is an FQDN
Impact People that configure mTLS between Traefik and clients. For a request, the TLS configuration choice can be different than the router choice, which implies the use of a wrong TLS configuration. - When sending a request using FQDN handled by a router configured with a dedicated TLS...
Skip the router TLS configuration when the host header is an FQDN
Impact People that configure mTLS between Traefik and clients. For a request, the TLS configuration choice can be different than the router choice, which implies the use of a wrong TLS configuration. - When sending a request using FQDN handled by a router configured with a dedicated TLS...
Cross site scripting
Leanote prior to version 2.6 is affected by: Cross Site Scripting XSS...