Elliptic 安全漏洞

Elliptic is a library of fast elliptic curve ciphers in javascript by the individual developer Fedor Indutny. A security vulnerability exists in Elliptic version 6.5.6, which stems from a lack of signature length checking, and therefore an EDDSA signature extensibility issue...

CVE-2022-3425

The Analyticator WordPress plugin before 6.5.6 unserializes user input provided via the settings, which could allow high-privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...

Design/Logic Flaw

The Analyticator WordPress plugin before 6.5.6 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...

Code injection

A Credentials Management CWE-255 vulnerability exists in the APC UPS Network Management Card 2 AOS v6.5.6, which could cause Remote Monitoring Credentials to be viewed in plaintext when Remote Monitoring is enabled, and then disabled...

CVE-2018-7820

The CVE-2018-7820 entry concerns the APC UPS Network Management Card 2 AOS v6.5.6. The vulnerability is a Credentials Management issue (CWE-255) where Remote Monitoring credentials could be viewed in plaintext when Remote Monitoring is enabled and then disabled. No in-document exploit details or ...