EUVD-2026-11993

Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Atarim: from n/a through = 4.3.2...

CVE-2026-29789

Vito is a self-hosted web application that helps manage servers and deploy PHP applications into production servers. Prior to version 3.20.3, a missing authorization check in workflow site-creation actions allows an authenticated attacker with workflow write access in one project to create/manage...

CVE-2026-29789

Summary: Vito (self-hosted web app) suffers a cross-project privilege escalation due to a missing authorization check in workflow site-creation actions. Affected versions: prior to 3.20.3. Impact: an authenticated user with workflow write access in one project can create/manage sites on servers b...

CVE-2026-29789 Vito: Cross-project privilege escalation in workflow site-creation actions allows unauthorized server modification

Vito is a self-hosted web application that helps manage servers and deploy PHP applications into production servers. Prior to version 3.20.3, a missing authorization check in workflow site-creation actions allows an authenticated attacker with workflow write access in one project to create/manage...

EUVD-2026-10068

Vito is a self-hosted web application that helps manage servers and deploy PHP applications into production servers. Prior to version 3.20.3, a missing authorization check in workflow site-creation actions allows an authenticated attacker with workflow write access in one project to create/manage...

CVE-2025-60195

Incorrect Privilege Assignment vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Privilege Escalation.This issue affects Atarim: from n/a through = 4.2.1...

PT-2025-45268

Incorrect Privilege Assignment vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Privilege Escalation.This issue affects Atarim: from n/a through = 4.2...

EUVD-2025-4777

Malicious code in bioql PyPI...

CVE-2025-26993

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Reflected XSS.This issue affects Atarim: from n/a through = 4.1.0...

CVE-2025-26993

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Reflected XSS.This issue affects Atarim: from n/a through = 4.1.0...

CVE-2025-26993 WordPress Visual Website Collaboration Atarim plugin <= 4.1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Reflected XSS.This issue affects Atarim: from n/a through = 4.1.0...

CVE-2025-22657

Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Atarim: from n/a through = 4.0.9...

VulnCheck KEV: CVE-2024-38771

Missing Authorization vulnerability in Vito Peleg Atarim atarim-visual-collaboration.This issue affects Atarim: from n/a through = 4.0...

vitocontreras.es Improper Access Control vulnerability OBB-3826247

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3609)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-3609 advisory. - fs/exec.c: account for argv/envp pointers Kees Cook Orabug: 26638900 CVE-2017-1000365 CVE-2017-1000365 - dentry name snapshots Al Viro Orabug:...

Vito CMS SQL Injection Vulnerability

No description provided by source. .:. Author : [email protected] .:. Contact: [email protected], [email protected] .:. Home : www.evilzone.org .:. Script : Vito CMS .:. Info link: http://kameleon-lab.com/vito-cms.php .:. Versions: ALL .:. Bug Type : Sql Injection .:. Risk: High .:. Tested on ...

Vito CMS - SQL Injection

.:. Author : [email protected] .:. Contact: [email protected], [email protected] .:. Home : www.evilzone.org .:. Script : Vito CMS .:. Info link: http://kameleon-lab.com/vito-cms.php .:. Versions: ALL .:. Bug Type : Sql Injection .:. Risk: High .:. Tested on : Windows & Linux === Exploit === ....

Vito CMS - SQL Injection

Vito CMS - SQL Injection .:. Author : [email protected] .:. Contact: [email protected], [email protected] .:. Home : www.evilzone.org .:. Script : Vito CMS .:. Info link: http://kameleon-lab.com/vito-cms.php .:. Versions: ALL .:. Bug Type : Sql Injection .:. Risk: High .:. Tested on : Windows ...

Vito CMS SQL Injection vulnerability

Exploit for unknown platform in category web applications ==================================== Vito CMS SQL Injection vulnerability ==================================== Software Link: http://kameleon-lab.com/vito-cms.php it isn't download link, because it is not free Version: n/a .:. Script : Vit...

Vito CMS SQL Injection

Exploit Title: Vito CMS SQL Injection Vulnerability Date: 2010-02-11 Author: [email protected] Software Link: http://kameleon-lab.com/vito-cms.php it isn't download link, because it is not free Version: n/a .:. Author : [email protected] .:. Contact: [email protected], [email protected] .:. Hom...