The vulnerability of software for monitoring, managing, and configuring VigorAP access points and VigorSwitches in the DrayTek VigorConnect local network lies in the inter-site requests that are forged. This allows a perpetrator to carry out a CSRF attack.

The vulnerability of software for monitoring, managing, and configuring VigorAP access points and VigorSwitches in the DrayTek VigorConnect local network is related to the unlimited loading of dangerous files. Exploiting this vulnerability can allow a remote attacker to…...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Fortinet FortiManager software, a centralized device management tool, arises from the lack of measures to neutralize specific elements, allowing a perpetrator to execute arbitrary code.

The vulnerability of the Fortinet FortiManager device management software is related to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the cakedestroy() function in the sch_cake component of the Linux operating system allows a malicious actor to escalate their privileges or cause service failures.

The vulnerability of the cakedestroy function in the schcake component of the Linux operating system’s kernel is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges or cause service interruptions...

The vulnerability of the envoy.reloadable_features configuration. http1_balsa_delay_reset proxy server Envoy, which allows a hacker to trigger a service failure.

The vulnerability of the envoy.reloadablefeatures configuration, including http1balsadelay and reset, related to incorrect implementation of control flow processing when handling HTTP responses. Exploiting this vulnerability can allow an attacker to cause service interruptions...

The vulnerability of the /sbin/httpd microprogramming system used in wireless access points DAP-2555 allows a attacker to cause a service failure.

The vulnerability of the /sbin/httpd microprogramming system used by D-Link DAP-2555 wireless access points is related to the escape of operations beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures by sending specially crafted HTTP...

The vulnerability in the mainfunction.cgi web interface of the DrayTek Vigor router software allows a hacker to execute arbitrary code.

The vulnerability in the mainfunction.cgi web interface of the DrayTek Vigor router software exists due to the failure to implement measures to neutralize specific elements. Exploiting this vulnerability allows an attacker to execute arbitrary commands during the processing of parameters...

The vulnerability of the vpn.cgi web interface script of the DrayTek Vigor router software allows a hacker to trigger a service failure.

The vulnerability of the vpn.cgi web interface of the DrayTek Vigor router operating system is related to buffer overflow during the processing of the sPeerId parameter. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

The vulnerability of the sub_1DF14 function in the mainfunction.cgi web interface of the DrayTek Vigor router software allows a hacker to gain unauthorized access to confidential system files.

The vulnerability of the sub1DF14 function in the mainfunction.cgi web interface of the DrayTek Vigor router software is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to...

The vulnerability of the sub_1225C function in the mainfunction.cgi web interface of the DrayTek Vigor router software allows a hacker to execute arbitrary commands.

The vulnerability of function sub1225C in the mainfunction.cgi web interface of the DrayTek Vigor router software lies in the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability in the mainfunction.cgii web interface of DrayTek Vigor software allows a hacker to execute arbitrary code.

The vulnerability in the mainfunction.cgii web interface of the DrayTek Vigor router software system involves the use of uncontrolled format strings. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

The vulnerability of the `ldap_search_dn` function in the `mainfunction.cgi` script of the DrayTek Vigor router’s web interface allows a hacker to execute arbitrary commands.

The vulnerability of the ldapsearchdn function in the mainfunction.cg script of the DrayTek Vigor router’s web interface is related to the lack of measures taken at the control level to clean data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the chglog.cgi web interface of the DrayTek Vigor router software allows a attacker to trigger a Denial-of-Service Attack (DoS).

The vulnerability of the chglog.cgi web interface of the DrayTek Vigor router software lies in the buffer overflow that occurs during the processing of the CGIbyFieldName parameter. Exploiting this vulnerability allows an attacker to trigger a Denial-of-Service attack from a remote location...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The software’s vulnerability regarding the detection of vulnerabilities and errors in PT Application Inspector arises from an incorrect limitation on the path to the restricted access directory. This allows attackers to increase their privileges.

The vulnerability of the application software’s interface for detecting vulnerabilities and errors in PT Application Inspector exists due to an incorrect limitation on the path name to the restricted access directory. Exploiting this vulnerability allows a malicious actor to enhance their...

The vulnerability in the mainfunction.cgi web interface of the DrayTek Vigor router software allows a hacker to execute arbitrary code.

The vulnerability in the mainfunction.cgi web interface of the DrayTek Vigor router software exists due to the failure to implement measures to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the MinIO object storage server, related to insecure management of privileges, allows an attacker to elevate their privileges to the root level.

The vulnerability of the MinIO object storage server is related to insecure management of privileges. Exploiting this vulnerability could allow an attacker to elevate their privileges to the root level...

The vulnerability of the RADIUS Setting module – RADIUS Server Configuration software for monitoring, managing, and configuring Draytek VigorAP access points – allows a attacker to carry out XSS attacks.

The vulnerability of the RADIUS Setting module – RADIUS Server Configuration software for monitoring, managing, and configuring Draytek VigorAP access points – is related to the lack of security measures taken to protect the website structure. Exploiting this vulnerability allows a malicious acto...

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code or cause service interruptions.

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers relates to the execution of operations beyond the buffer in memory when processing HTML content. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause service failures...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the execution of operations beyond buffer boundaries in memory, allows attackers to bypass the ASLR protection mechanism and gain unauthorized access to protected information.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected informati...

The vulnerability in the mainfunction.cgii web interface of the DrayTek Vigor router software allows a hacker to inject any command they desire.

The vulnerability in the mainfunction.cgii web interface of the DrayTek Vigor router software exists due to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a malicious actor to inject arbitrary commands remotely...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the execution of operations beyond buffer boundaries in memory, allows attackers to bypass the ASLR protection mechanism and gain unauthorized access to protected information.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to bypass the ASLR protection mechanism and gain unauthorized access to protected informati...

The vulnerability of software for monitoring, managing, and configuring VigorAP access points and VigorSwitches in the DrayTek VigorConnect local network lies in the lack of access control. This allows a malicious user to delete any files with root privileges.

The vulnerability of software for monitoring, managing, and configuring VigorAP access points and VigorSwitches in the DrayTek VigorConnect local network is related to lack of access control. Exploiting this vulnerability could allow a malicious actor to delete any files with root privileges...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the software protection tool for accessing applications in Docker environments. IBM Security Verify Access Docker, which is related to errors in privilege management, allows attackers to elevate their privileges.

The vulnerability of the application access protection software in Docker environments is related to errors in privilege management. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code and gain full control over the system.

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to type mixing errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and gain full control over the system...

The vulnerability of the strip_tags() function in the django.utils.html module of the Django software framework allows a attacker to cause a denial-of-service attack.

The vulnerability of the striptags function in the django.utils.html module of the Django software framework relates to unlimited resource allocation due to improper escaping of HTML characters. Exploiting this vulnerability can allow a malicious actor to cause service failures by sending special...

The vulnerability in the UploadHandler.php script of the WP Time Capsule plugin for WordPress content management system allows a hacker to upload arbitrary files and execute arbitrary code.

The vulnerability in the UploadHandler.php script of the WP Time Capsule plugin for WordPress content management system is related to the unlimited uploading of dangerous types of files. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted...

The vulnerability of the Search/Node Information Section component in the user interface of SolarWinds Platform’s network monitoring and IT infrastructure management software allows attackers to perform cross-site scripting (XSS) attacks.

The vulnerability of the Search/Node Information Section component in the user interface of SolarWinds Platform’s network monitoring and IT infrastructure management software is related to the lack of protective measures for the website structure. Exploiting this vulnerability could allow a...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system, related to inadequate access control mechanisms, allows attackers to circumvent existing security restrictions.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to circumvent existing security restrictions remotely...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of Adobe Connect web conference software lies in the insufficient protection of the website structure, which allows attackers to execute arbitrary code.

The vulnerability of Adobe Connect web conference software is related to insufficient protection of the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the WiFi Connect MAC Filter component of the Synology Router Manager operating system allows a hacker to perform cross-site scripting attacks.

The vulnerability of the WiFi Connect MAC Filter component of the Synology Router Manager operating system relates to the lack of security measures for the website structure. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

The vulnerability of the DDNS Record component of the operating system for managing Synology Router Manager network devices allows attackers to perform domain-based attacks.

The vulnerability of the DDNS Record component of the operating system used to manage Synology Router Manager devices is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a remote attacker to perform domain-level attacks...