4 matches found
CVE-2026-35007
Open ISES Tickets before 3.44.2 contains a reflected cross-site scripting vulnerability in singleunit.php that allows authenticated attackers to inject arbitrary JavaScript by passing an unsanitized value through the id GET parameter directly into an HTML attribute. Attackers can craft a maliciou...
WordPress plugin WPKoi Templates for Elementor 安全漏洞
WordPress WPKoi Templates for Elementor plugin is a template plugin designed for Elementor page builder, offering 400+ preset templates and dynamic elements to help users quickly create visual websites. The WordPress WPKoi Templates for Elementor plugin suffers from a missing authorization...
AudioCodes VoIP Trust Management Issues Vulnerability
AudioCodes VoIP is a series of desk phones from the Israeli company AudioCodes. A security vulnerability exists in AudioCodes VoIP desk phones version 3.4.4.1000 and earlier versions, which stems from the use of hard-coded keys in libacdes3.so...
jeecg SQL注入漏洞
jeecg is a software application. An intelligent development platform based on a code generator. A security vulnerability exists in jeecg jeecg-boot version v3.4.4, which stems from the discovery of the inclusion of an SQL injection vulnerability via the build block report component...