Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Paytm Paytm Payment Donation plugin Read More ...
Continue Reading
August 14, 2023
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Silvia Pfeiffer and Andrew Nimmo External Videos plugin Read More ...
Continue Reading
August 14, 2023
An issue was discovered in SysPasswordDxe in Insyde InsydeH2O with kernel 5.0 through 5.5. System password information could optionally be stored in cleartext, which might lead to possible information ...
Continue Reading
August 14, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in I Thirteen Web Solution Email Subscription Popup plugin Read More ...
Continue Reading
August 14, 2023
The vulnerability potentially allows an attacker to misuse ESETâs file operations during the module update to delete or move files without having proper permissions.Read More ...
Continue Reading
August 14, 2023
Cross-site Scripting (XSS) - Stored in GitHub repository cockpit-hq/cockpit prior to 2.4.3.Read More ...
Continue Reading
August 14, 2023
When adding a remote backup location, an authenticated user can pass arbitrary OS commands through the username field. The username is passed without sanitization into CMD running as NT/Authority Syst ...
Continue Reading
August 14, 2023
An authentication bypass exists on CyberPower PowerPanel Enterprise by failing to sanitize meta-characters from the username, allowing an attacker to login into the application with the default user " ...
Continue Reading
August 14, 2023
Back to Main
