47 matches found
Advisory ROSA-SA-2026-3134
Software: flac 1.3.2 OS: ROSA Virtualization 2.1 unaffected versions = flac-1.3.2-9.rv3.1 affected versions flac-1.3.2-9.rv3.1 CVE-ID: CVE-2020-22219 BDU-ID: 2023-06152 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the bitwritergrow in function of the FLAC audio codec is related to an operation...
CVE-2020-36970
PMB 5.6 contains a local file disclosure vulnerability in getgif.php that allows attackers to read arbitrary system files by manipulating the 'chemin' parameter. Attackers can exploit the unsanitized file path input to access sensitive files like /etc/passwd by sending crafted requests to the...
Linux Distros Unpatched Vulnerability : CVE-2020-13231
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Cacti before 1.2.11, authprofile.php?action=edit allows CSRF for an admin email change. CVE-2020-13231 Note that Nessus relies on the presence of the package...
CVE-2020-12667
creationtimestamp| type| source ---|---|--- 2024-10-24 04:43:49+00:00| seen| https://t.me/CyberSecurityTechnologies/1149...
CVE-2020-10748
creationtimestamp| type| source ---|---|--- 2024-01-02 11:31:29+00:00| seen| https://t.me/ctinow/161687...
CVE-2020-24537
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2020. Notes: none...
CVE-2020-2798
creationtimestamp| type| source ---|---|--- 2023-03-13 22:21:06+00:00| seen| https://t.me/CyberSecurityTechnologies/7921 2023-03-14 09:24:23+00:00| published-proof-of-concept| Telegram/5T9p9Zashh8t2QaMEcrWCxGmV69ND6VmH0ET2CJ3Gp-A...
CVE-2020-25858
creationtimestamp| type| source ---|---|--- 2022-11-27 19:25:16+00:00| seen| https://t.me/CyberSecurityTechnologies/1943...
CVE-2020-8203
creationtimestamp| type| source ---|---|--- 2022-07-04 18:20:38+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1478 2023-12-10 14:09:17+00:00| seen| https://t.me/arpsyndicate/1632 2023-12-18 08:43:58+00:00| seen| https://t.me/arpsyndicate/1949 2026-01-20 13:55:09+00:00|...
CVE-2020-24771
creationtimestamp| type| source ---|---|--- 2022-03-30 07:11:50+00:00| seen| https://t.me/cibsecurity/39783...
CVE-2020-20426
creationtimestamp| type| source ---|---|--- 2021-12-23 02:18:39+00:00| seen| https://t.me/cibsecurity/34552...
CVE-2020-12082
creationtimestamp| type| source ---|---|--- 2021-09-17 22:24:20+00:00| seen| https://t.me/cibsecurity/29069...
CVE-2020-22732
creationtimestamp| type| source ---|---|--- 2021-08-05 20:31:23+00:00| seen| https://t.me/cibsecurity/26886...
CVE-2020-24147
Server-side request forgery SSR vulnerability in the WP Smart Import wp-smart-import plugin 1.0.0 for WordPress via the file field...
CVE-2020-29214
SQL injection vulnerability in SourceCodester Alumni Management System 1.0 allows the user to inject SQL payload to bypass the authentication via admin/login.php...
CVE-2020-5024
creationtimestamp| type| source ---|---|--- 2021-03-11 19:00:37+00:00| seen| https://t.me/cibsecurity/24785...
CVE-2020-27779
creationtimestamp| type| source ---|---|--- 2021-03-03 20:46:04+00:00| seen| https://t.me/cibsecurity/24420...
Exploit for Improper Authentication in Apache Shiro
Apache Shiro 认证绕过分析(CVE-2020-17523) https://www.anquanke.com/post/id/230935 0x01 漏洞描述 Apache Shiro是一个强大且易用的Java安全框架,执行身份验证、授权、密码和会话管理。使用Shiro的易于理解的API,您可以快速、轻松地获得任何应用程序,从最小的移动应用程序到最大的网络和企业应用程序。 当它和 Spring 结合使用时,在一定权限匹配规则下,攻击者可通过构造特殊的 HTTP 请求包完成身份认证绕过。 影响范围:Apache Shiro 1.7.1 0x02 漏洞环境搭建 shiro 1.7...
UBUNTU-CVE-2020-15690
In Nim before 1.2.6, the standard library asyncftpclient lacks a check for whether a message contains a newline character...
CVE-2020-24025
creationtimestamp| type| source ---|---|--- 2021-01-11 22:46:11+00:00| seen| https://t.me/cibsecurity/21911...