CVE-2023-44318

CVE-2023-44318 affects Siemens SCALANCE and RUGGEDCOM devices (e.g., SCALANCE XB205-3, M-series, S615, RM1224, etc.) where a hard-coded cryptographic key obfuscates configuration backups. This allows an authenticated admin or someone with a backup to extract configuration information from the exp...

GSD-2022-1004588 dmaengine: ti: Fix refcount leak in ti_dra7_xbar_route_allocate

dmaengine: ti: Fix refcount leak in tidra7xbarrouteallocate This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.130 by commit...

GSD-2022-1003273 watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe

watchdog: ts4800wdt: Fix refcount leak in ts4800wdtprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.47 by commit...

GSD-2022-1002626 watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe

watchdog: ts4800wdt: Fix refcount leak in ts4800wdtprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.4 by commit...

CVE-2022-30236

A CWE-669: Incorrect Resource Transfer Between Spheres vulnerability exists that could allow unauthorized access when an attacker uses cross-domain attacks. Affected Products: Wiser Smart, EER21000 & EER21001 V4.5 and prior...

CVE-2022-30232

A CWE-20: Improper Input Validation vulnerability exists that could cause potential remote code execution when an attacker is able to intercept and modify a request on the same network or has configuration access to an ION device on the network. Affected Products: Wiser Smart, EER21000 & EER21001...

CVE-2022-30233

A CWE-20: Improper Input Validation vulnerability exists that could allow the product to be maliciously manipulated when the user is tricked into performing certain actions on a webpage. Affected Products: Wiser Smart, EER21000 & EER21001 V4.5 and prior...

Siemens S7-1200 - Unauthenticated Start / Stop Command Vulnerability

Exploit Title: Unauthenticated Siemens S7-1200 CPU Start/Stop Command Exploit Author: RoseSecurity Vendor Homepage: https://www.siemens.com/global/en.html Version: V4.5 and below Tested on: Siemens S7-1200 CPU: 1215C IP == PLC IP address Start Command curl -i -s -k -X $'POST' \ -H $'Host: ' -H...

GSD-2021-1002583 IB/hfi1: Fix leak of rcvhdrtail_dummy_kvaddr

IB/hfi1: Fix leak of rcvhdrtaildummykvaddr This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.8 by commit...

UVI-2021-1001580 drm/nouveau/debugfs: fix file release memory leak

drm/nouveau/debugfs: fix file release memory leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.153 by commit...

GSD-2021-1001550 drm/nouveau/debugfs: fix file release memory leak

drm/nouveau/debugfs: fix file release memory leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.211 by commit...

UVI-2021-1001523 drm/nouveau/debugfs: fix file release memory leak

drm/nouveau/debugfs: fix file release memory leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.251 by commit...

Security Bulletin: Multiple vulnerabilities affect IBM® SDK for Node.js™ in IBM Cloud

Summary Node.js Update 15-Sept-2020 Security releases available Vulnerability Details CVEID: CVE-2020-8201 DESCRIPTION: Node.js is vulnerable to HTTP request smuggling, caused by CR-to-Hyphen conversion. By sending specially crafted HTTP request headers, an attacker could exploit this vulnerabili...

PHP Dashboards 4.5 - email SQL Injection

PHP Dashboards 4.5 - email SQL Injection Exploit Title: PHP Dashboards v4.5 - Registration Page SQL Injection Dork: N/A Date: 23.05.2018 Exploit Author: Özkan Mustafa Akkuş AkkuS Vendor Homepage: https://codecanyon.net/item/php-dashboards-v40-collaborative-social-dashboards/19314871 Version: v4.5...

PHP Dashboards 4.5 - 'email' SQL Injection

Exploit Title: PHP Dashboards v4.5 - Registration Page SQL Injection Dork: N/A Date: 23.05.2018 Exploit Author: Özkan Mustafa Akkuş AkkuS Vendor Homepage: https://codecanyon.net/item/php-dashboards-v40-collaborative-social-dashboards/19314871 Version: v4.5 Category: Webapps Tested on: Kali linux...

CVE-2018-1000132

CVE-2018-1000132 affects Mercurial 4.5 and earlier, with an Incorrect Access Control (CWE-285) in the Protocol server that can lead to unauthorized data access over the network. The vulnerability is explicitly stated to have been fixed in Mercurial 4.5.1. Connected advisories reference affected p...

Joomla! Component JO Facebook Gallery v4.5 - SQL Injection

Joomla! Component JO Facebook Gallery v4. 5 - SQL Injection index. php id parameter into the SQL statement exist GET the type of injection Injection point: http://localhost/PATH/index. php? option=comjofacebookgallery&view=category&id=SQL http://localhost/PATH/index. php?...

Notes v4.5 iOS - Arbitrary File Upload Vulnerability

Document Title: =============== Notes v4.5 iOS - Arbitrary File Upload Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1832 Release Date: ============= 2016-04-25 Vulnerability Laboratory ID VL-ID: ==================================== 1832...

Notes v4.5 iOS - Arbitrary File Upload Vulnerability

Document Title: =============== Notes v4.5 iOS - Arbitrary File Upload Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1832 Release Date: ============= 2016-04-24 Vulnerability Laboratory ID VL-ID: ==================================== 1832...

汇文图书管理系统SQL注入

简要描述： 大量高校在使用该系统，测试了多个版本，都存在同样的问题。 详细说明： 看了下你们用户列表中的高校，基本上都用的是4.5或5.0版本的，都有同样的问题，找回密码处存在注入。 1 OPAC V4.5 测试站点：http://210.27.80.82/reader/redrmail.php 'or '1’=’1 时 和 ‘or ‘1’=’2 时返回不同，此处明显是存在注入的，是布尔型盲注。 拿出sqlmap跑跑，居然告诉我不能注入，不科学啊。反复修改参数试了几次，还是只能时间盲注，看来有时候神器也不好使。时间盲注就时间盲注吧，也比我自己动手快，尝试跑了下数据。 Sqlmap -r...