When the isula export command is used to export a container to an image and the container is controlled by an attacker, the attacker can…

When the isula cp command is used to copy files from a container to a host machine and the container is controlled by an attacker,…

An issue was discovered in VERMEG AgileReporter 21.3. XXE can occur via an XML document to the Analysis component. Zafiyet ile ilgili Genel Bilgi, Etki…

An issue was discovered in VERMEG AgileReporter 21.3. An admin can enter an XSS payload in the Analysis component. Zafiyet ile ilgili Genel Bilgi, Etki…

An issue was discovered in VERMEG AgileReporter 21.3. Attackers can gain privileges via an XSS payload in an Add Comment action to the Activity log.…

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Alkaweb Eonet Manual User Approve plugin <= 2.1.3 versions. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için…

An issue was discovered in Cassia Access Controller 2.1.1.2303271039. The Web SSH terminal endpoint (spawned console) can be accessed without authentication. Specifically, there is no…

An issue was discovered in Cassia Access Controller 2.1.1.2303271039. The Web SSH terminal endpoint (spawned console) can be accessed without authentication. Specifically, there is no…

baserCMS is a website development framework with WebAPI that runs on PHP8 and CakePHP4. There is a XSS Vulnerability in Favorites Feature to baserCMS. This…

An information disclosure vulnerability has been identified in the Lenovo App Store which may allow some applications to gain unauthorized access to sensitive user data…