Ericsson Network Manager (ENM), versions prior to 22.2, contains a vulnerability in the REST endpoint âeditprofileâ where Open Redirect HTTP Header Injection can lead to redirection of the s ...
Continue Reading
June 29, 2023
calamares-nixos-extensions provides Calamares branding and modules for NixOS, a distribution of GNU/Linux. Users of calamares-nixos-extensions version 0.3.12 and prior who installed NixOS through the ...
Continue Reading
June 29, 2023
A Cross Site Scripting vulnerability in PHPgurukl User Registration Login and User Management System with admin panel v.1.0 allows a local attacker to execute arbitrary code via a crafted script to th ...
Continue Reading
June 29, 2023
Annet AC Centralized Management Platform 1.02.040 is vulnerable to Stored Cross-Site Scripting (XSS)...Read More ...
Continue Reading
June 29, 2023
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 5.5.2 and 6.2.1, an attacker can use a prototype pollution sink to trigger a r ...
Continue Reading
June 29, 2023
Traggo Server 0.3.0 is vulnerable to directory traversal via a crafted GET request.Read More ...
Continue Reading
June 29, 2023
The Short URL plugin for WordPress is vulnerable to stored Cross-Site Scripting via the 'comment' parameter due to insufficient input sanitization and output escaping in versions up to, and ...
Continue Reading
June 29, 2023
A Directory Browsing vulnerability in MCL-Net version 4.3.5.8788 webserver running on default port 5080, allows attackers to gain sensitive information about the configured databases via the "/file" e ...
Continue Reading
June 29, 2023
Back to Main
