Güncel Güvenlik Açıkları

Cross Site Scripting (XSS) vulnerability exists in ManageEngine OPManager <=12.5.174 when the API key contains an XML-based XSS payload. Devamını Oku

Cross Site Scripting (XSS) vlnerability exists in WUZHI CMS up to and including 4.1.0 in the config function in coreframe/app/attachment/libs/class/ckditor.class.php. Devamını Oku

Blacklist bypass issue exists in WUZHI CMS up to and including 4.1.0 in common.func.php, which when uploaded can cause remote code executiong. Devamını Oku

Directory Traversal vulnerability exists in PopojiCMS 2.0.1 via the id parameter in admin.php. Devamını Oku

Directory Traversal vulnerability exists in PopojiCMS 2.0.1 via the id parameter in admin.php. Devamını Oku

qdPM V9.1 is vulnerable to Cross Site Scripting (XSS) via qdPMinstallmodulesdatabase_config.php. Devamını Oku

Cross Site Scriptiong vulnerability in Typesetter 5.1 via the !1) className and !2) Description fields in index.php/Admin/Classes, Devamını Oku

Cross Site Scriptiong vulnerability in Typesetter 5.1 via the !1) className and !2) Description fields in index.php/Admin/Classes, Devamını Oku

Textpattern 4.7.3 contains an aribtrary file load via the file_insert function in include/txp_file.php. Devamını Oku

Textpattern 4.7.3 contains an aribtrary file load via the file_insert function in include/txp_file.php. Devamını Oku

An issue was discovered in heif::Box_iref::get_references in libheif 1.4.0, allows attackers to cause a Denial of Service or possibly other unspecified impact due to an invalid memory read. Devamını Oku