42 matches found
Blue-Smiley-Organizer SQL注入漏洞
Blue-Smiley-Organizer is a calendar management tool personally developed by Oliver Antosch. Version 1.32 of Blue-Smiley-Organizer contains an SQL injection vulnerability. This vulnerability stems from the datetime parameter, which allows for SQL injections, potentially enabling unverified attacke...
EUVD-2017-1386
Malware in sbrugna...
Fedora: Security Advisory (FEDORA-2025-9b52dfdae9)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SAMSUNG Security Manager 安全漏洞
SAMSUNG Security Manager is a software from Samsung South Korea for managing Samsung security drives. A security vulnerability exists in SAMSUNG Security Manager version 1.32 and 1.4, which stems from an improperly restricted PUT method that could lead to remote code execution...
CVE-2025-46599
CNCF K3s 1.32 before 1.32.4-rc1+k3s1 has a Kubernetes kubelet configuration change with the unintended consequence that, in some situations, ReadOnlyPort is set to 10255. For example, the default behavior of a K3s online installation might allow unauthenticated access to this port, exposing...
Zyxel USG FLEX 安全漏洞
Zyxel USG FLEX is a firewall from China Hopkins Zyxel. Offering flexible VPN options IPsec, SSL or L2TP, it provides flexible and secure remote access for remote work and management. A security vulnerability exists in Zyxel USG FLEX versions prior to V1.32, which stems from improper privilege...
Zyxel USG FLEX 安全漏洞
Zyxel USG FLEX is a firewall from China Hopkins Zyxel. Offering flexible VPN options IPsec, SSL or L2TP, it provides flexible and secure remote access for remote work and management. A security vulnerability exists in Zyxel USG FLEX versions prior to V1.32, which stems from improper assignment of...
UBUNTU-CVE-2024-23091
Weak password hashing using MD5 in funzioni.php in HotelDruid before 1.32 allows an attacker to obtain plaintext passwords from hash values...
HotelDruid 安全漏洞
Hoteldruid is a free and open source hotel management program from Hoteldruid. A security vulnerability exists in HotelDruid versions prior to 1.32 that stems from a weak password hash using MD5, allowing an attacker to obtain plaintext passwords from hashes...
WordPress plugin Playlist for Youtube 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
GHSA-478X-M3MX-7J3F Jenkins HTML Publisher Plugin Path traversal vulnerability
Jenkins HTML Publisher Plugin 1.32 and earlier archives invalid symbolic links in report directories on agents and recreates them on the controller, allowing attackers with Item/Configure permission to determine whether a path on the Jenkins controller file system exists, without being able to...
Jenkins HTML Publisher Plugin Security Vulnerability
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability ...
Jenkins HTML Publisher Plugin Security Vulnerability
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability ...
CVE-2023-1979 Auth bypass in Web Stories for WordPress plugin
The Web Stories for WordPress plugin supports the WordPress built-in functionality of protecting content with a password. The content is then only accessible to website visitors after entering the password. In WordPress, users with the "Author" role can create stories, but don't have the ability ...
MediaWiki Cross-site Scripting (XSS) vulnerability
In MediaWiki before 1.31.9 and 1.32.x through 1.34.x before 1.34.3, XSS related to jQuery can occur. The attacker creates a message with javascript:payload xss and turns it into a jQuery object with mw.message.parse. The expected result is that the jQuery object does not contain an tag or it does...
YottaDB 代码问题漏洞
YottaDB is a real-time database from YottaDB, Inc. A security vulnerability exists in YottaDB r1.32 and earlier, which stems from a missing NULL check in tripgen in srport/emitcode.c. An attacker could use this vulnerability to crash the application by dereferencing the NULL pointer. An attacker...
YottaDB 数字错误漏洞
YottaDB is a real-time database from YottaDB, Inc. A security vulnerability exists in YottaDB r1.32 and earlier, which could be exploited to cause an integer overflow of the size of the memset call in opfnj3 in srport/opfnj3.c, resulting in a segmentation error and crashing the application...
YottaDB 代码问题漏洞
YottaDB is a real-time database from YottaDB, Inc. A security vulnerability exists in YottaDB r1.32 and earlier, which stems from a missing NULL check in the call to emittrip in srport/emitcode.c. An attacker could crash the application by dereferencing the NULL pointer. An attacker could crash t...
MediaWiki suffers from an unspecified vulnerability (CNVD-2021-29994)
MediaWiki is a suite of free and freely available web-based Wiki engines from the MediaWiki Foundation. It can be used to deploy in-house knowledge management and content management systems. A security vulnerability exists in MediaWiki version 1.31.12 and versions prior to 1.32.x series 1.35.x...
PT-2021-3348 · Mediawiki +1 · Mediawiki +1
Name of the Vulnerable Software and Affected Versions: MediaWiki versions 1.31.13 and earlier MediaWiki versions 1.32.x through 1.35.1 Description: An issue was discovered in MediaWiki related to the "protect" page function via the MediaWiki API. This issue allows a user to protect a page to a...