SQL injection exists in LaiKetui v3.5.0 the background administrator list.Read More ...
Continue Reading
June 23, 2022
Cross Site Scripting (XSS) vulnerability in sourcecodester School File Management System 1.0 via the Firtstname parameter to the Update Account form in student_profile.php.Read More ...
Continue Reading
June 23, 2022
Laiketui 3.5.0 is affected by an arbitrary file upload vulnerability that can allow an attacker to execute arbitrary code.Read More ...
Continue Reading
June 23, 2022
Improper Authentication vulnerability in S&D smarthome(smartcare) application can cause authentication bypass and information exposure. Remote attackers can use this vulerability to take control o ...
Continue Reading
June 23, 2022
Stored XSS and SQL injection vulnerability in MaxBoard could lead to occur Remote Code Execution, which could lead to information exposure and privilege escalation.Read More ...
Continue Reading
June 23, 2022
There is no account authentication and permission check logic in the firmware and existing apps of SiHAS's SGW-300, ACM-300, GCM-300, so unauthorized users can remotely control the device.Read More ...
Continue Reading
June 23, 2022
In Jenkins 2.320 through 2.355 (both inclusive) and LTS 2.332.1 through LTS 2.332.3 (both inclusive) the help icon does not escape the feature name that is part of its tooltip, effectively undoing the ...
Continue Reading
June 23, 2022
Insecure permissions in OneBlog v2.3.4 allows low-level administrators to reset the passwords of high-level administrators who hold greater privileges.Read More ...
Continue Reading
June 23, 2022
Back to Main
