49 matches found
EUVD-2020-4641
Malware in sbrugna...
EUVD-2023-58637
Malicious code in bioql PyPI...
PT-2025-36185
Name of the Vulnerable Software and Affected Versions: Dejan Markovic WordPress Buffer – HYPESocial. Social Media Auto Post, Social Media Auto Publish and Schedule versions n/a through 2020.1.0 Description: A Cross-Site Request Forgery CSRF vulnerability exists in Dejan Markovic WordPress Buffer ...
CVE-2023-32659
SUBNET PowerSYSTEM Center versions 2020 U10 and prior contain a cross-site scripting vulnerability that may allow an attacker to inject malicious code into report header graphic files that could propagate out of the system and reach users who are subscribed to email notifications...
Hongjing e-HR SQL Injection Vulnerability
Hongjing e-HR is a human resource management system from Hongjing, China. A SQL injection vulnerability exists in Hongjing e-HR version 2020, which is caused by a SQL injection vulnerability in the parameter parentid...
CVE-2023-38151
Microsoft Host Integration Server 2020 Remote Code Execution Vulnerability...
CVE-2023-43469
SQL injection vulnerability in janobe Online Job Portal v.2020 allows a remote attacker to execute arbitrary code via the ForPass.php component...
CVE-2023-43469
SQL injection vulnerability in janobe Online Job Portal v.2020 allows a remote attacker to execute arbitrary code via the ForPass.php component...
Online Job Portal SQL Injection Vulnerability
Online Job Portal is an online job portal for janobe individual developers. A security vulnerability exists in Online Job Portal version v.2020 that could allow a remote attacker to execute arbitrary code via the ForPass.php component...
Online Job Portal SQL Injection Vulnerability
Online Job Portal is an online job portal for janobe individual developers. A security vulnerability exists in Online Job Portal version 2020, which originates from a SQL injection vulnerability in the login.php component...
PT-2023-28833 · Unknown · Janobe Online Job Portal
Name of the Vulnerable Software and Affected Versions: janobe Online Job Portal version 2020 Description: A SQL injection issue allows a remote attacker to execute arbitrary code via the ForPass.php component. Recommendations: For janobe Online Job Portal version 2020, consider disabling the...
Xiaomi router 访问控制错误漏洞
Xiaomi router is a series of wireless routers from Chinese company Xiaomi. A security vulnerability exists in firmware version 2020 of the Xiaomi router, which stems from the lack of access control policies on some API interfaces, which could lead to WIFI password leakage and allow attackers to...
PT-2022-6508 · Aveva · Aveva Intouch Access Anywhere
Name of the Vulnerable Software and Affected Versions: AVEVA InTouch Access Anywhere versions 2020 R2 and older Description: The issue is related to errors in processing relative path to directory, which could allow an unauthenticated user with network access to read files on the system outside o...
AVEVA Edge 代码问题漏洞
AVEVA Edge is a highly scalable and flexible HMI/SCADA software from the UK-based company AvEVA Software AVEVA. A code issue vulnerability exists in AVEVA Edge version 2020 SP2 Patch 0 4201.2111.1802.0000. An attacker could exploit this vulnerability to force a victim to visit a malicious page or...
AVEVA Edge 代码问题漏洞
AVEVA Edge is a highly scalable and flexible HMI/SCADA software from the UK-based company AvEVA Software AVEVA. A code issue vulnerability exists in AVEVA Edge version 2020 SP2 Patch 0 4201.2111.1802.0000. An attacker could exploit this vulnerability to force a victim to visit a malicious page or...
AVEVA Edge 代码问题漏洞
AVEVA Edge is a highly scalable and flexible HMI/SCADA software from the UK-based company AvEVA Software AVEVA. A code issue vulnerability exists in AVEVA Edge version 2020 SP2 Patch 0 4201.2111.1802.0000. An attacker could exploit this vulnerability to force a victim to visit a malicious page or...
AVEVA Edge 代码问题漏洞
AVEVA Edge is a highly scalable and flexible HMI/SCADA software from the UK-based company AvEVA Software AVEVA. A code issue vulnerability exists in AVEVA Edge version 2020 SP2 Patch 0 4201.2111.1802.0000. An attacker could exploit this vulnerability to force a victim to visit a malicious page or...
Zaver 路径遍历漏洞
Zaver is a fast and efficient HTTP server for individual developers. A security vulnerability exists in Zaver version 2020-12-15 and earlier that stems from allowing directory traversal via substrings...
PT-2022-4345 · Aveva · Aveva Edge
Name of the Vulnerable Software and Affected Versions: AVEVA Edge 2020 SP2 Patch 04201.2111.1802.0000 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicious...
CVE-2022-35673
Adobe FrameMaker versions 2019 Update 8 and earlier and 2020 Update 4 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute...