36 matches found
EUVD-2010-4849
Malware in sbrugna...
EUVD-2025-12543
Malicious code in bioql PyPI...
CVE-2010-4885
Cross-site scripting XSS vulnerability in the XING Button xing extension before 1.0.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2024-11917
The JobSearch WP Job Board plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 2.9.2. This is due to improper configurations in the 'jobsearchxingresponsedatacallback', 'setaccesstokes', and 'googlecallback' functions. This makes it possible for...
com.day.crx:crx-auth-ldap (=2.3.15), com.day.crx:crx-spellchecker (>=2.3.14 <=2.3.64) +14 more potentially affected by CVE-2015-1833 via org.apache.jackrabbit:jackrabbit-core (>=2.4.0 <=2.4.5)
org.apache.jackrabbit:jackrabbit-core MAVEN version =2.4.0, =2.3.14, =2.3.14, =0.6.0, =2.4.0, =2.4.0, =2.4.0, =5.12.0, =5.11.0, =5.11.0, =5.11.0, =5.12.2 and more Source cves: CVE-2015-1833 Source advisory: OSV:GHSA-9284-J4C9-779Q...
Unauthorized Access Vulnerability in Xiao Xing Look Smart Camera
Xiao Xing Look Smart Camera is an important device under the ZTE Smart Home platform, which can help the owner to realize real-time monitoring of the home situation. Unauthorized access vulnerability exists in Xiao Xing Look Smart Camera, which can be exploited by attackers to obtain sensitive...
XSS Vulnerability in XYHCMS 3.6
Xing Yunhai CMS XYHCMS is a completely open source CMS content management system. XYHCMS 3.6 has an XSS vulnerability that can be exploited by attackers to obtain user cookie information...
Code execution vulnerability in XYHCMS backend Fr***.cl***.php file
Xing Yunhai CMS XYHCMS is a completely open source CMS content management system. A code execution vulnerability exists in the XYHCMS backend Fr.cl.php file. Attackers can use this vulnerability to obtain server privileges...
Unauthorized Access Vulnerability in FX Devices of Shenzhen Xingfusion Technology Co.
Shenzhen Xing Fusion Technology Co. was founded in 07, 2018. The company's business scope includes: information technology, computer hardware and software and peripherals, network systems, communication engineering, automotive technology, bioengineering and biological products. An unauthorized...
Yixing Xingsheng Information Technology Co., Ltd. website building system has SQL injection vulnerabilities
Yixing Xing Sheng Information Technology Co., Ltd. is a collection of network interactive media, planning, consulting, film and television, in one of the new network interactive service providers. Yixing Xing Sheng Information Technology Co., Ltd. station building system SQL injection...
File Upload Vulnerability in XYHCMS
Xing Yunhai CMS XYHCMS is a completely open source CMS content management system, simple and easy to use. XYHCMS file upload vulnerability , attackers can use the vulnerability to obtain server privileges...
XSS Vulnerability in XYHCMS
Xing Yunhai CMS XYHcms is a completely open source CMS content management system. XYHCMS has an XSS vulnerability that can be exploited by attackers to obtain administrator cookies...
Code Execution Vulnerability in Xingyunhai CMS V3.5
Xing Yunhai CMS XYHcms is a completely open source CMS content management system. XYH CMS V3.5 code execution vulnerabilities exist. Attackers can use the vulnerability to insert a sentence Trojan horse , to obtain server privileges...
DOM-type cross-site scripting vulnerabilities in the front-end of Xingyunhai CMS (XYHcms)
Xing Yunhai CMS XYHcms is a completely open source CMS content management system. Xing Yunhai CMS XYHcms front-end DOM-type cross-site scripting vulnerabilities. Attackers can use the vulnerability to insert js code in the packet to obtain user cookies and other information...
RHEL 7 : rh-maven35-jackson-databind (RHSA-2018:0342)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0342 advisory. The jackson-databind package provides general data-binding functionality for Jackson, which works on top of Jackson core streaming API...
Arbitrary File Deletion Vulnerability in Xingyunhai CMS v3.5
Xing Yunhai CMS XYHCMS is a completely open source CMS content management system, simple and easy to use. XYHCMS V3.5 version of the existence of arbitrary file deletion vulnerability, an attacker can use the vulnerability to delete any file , such as deleting install.lock for CMS reinstallation ...
Arbitrary File Read Vulnerability in Xingyunhai CMS V3.5
Xing Yunhai CMS XYHCMS is a completely open source set of CMS content management system , simple , easy to use. XYHCMS V3.5 version of the existence of arbitrary file reading vulnerability , attackers can use the vulnerability to read any file on the site to obtain sensitive information...
Xing Yunhai CMS (XYHcms) background there are arbitrary file deletion vulnerability
Xing Yunhai CMS XYHcms is a completely open source CMS content management system. XingYunHai CMS XYHcms background there are arbitrary file deletion vulnerability, the vulnerability is due to the system fails to correctly filter the parameters submitted by the user . Attackers can use this...
XING Jobs - Customized SSL, Redefined SSL Common Names verifier, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application XING Jobs published at the 'play' market has multiple vulnerabilities...
XING - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application XING published at the 'play' market has multiple vulnerabilities...