CVE-2023-25915
Due to improper input validation, a remote attacker could execute arbitrary commands on the target system. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için…
Due to improper input validation, a remote attacker could execute arbitrary commands on the target system. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için…
Due to improper restriction, attackers could retrieve and read system files of the underlying server through the XML interface. Zafiyet ile ilgili Genel Bilgi, Etki…
Because of an authentication flaw an attacker would be capable of generating a web report that discloses sensitive information such as internal IP addresses, usernames,…
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku Kaynak: National Vulnerability Database
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku Kaynak: National Vulnerability Database
The Change WP Admin Login WordPress plugin before 1.1.4 discloses the URL of the hidden login page when accessing a crafted URL, bypassing the protection…
The Bit Assist WordPress plugin before 1.1.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin…
The MultiParcels Shipping For WooCommerce WordPress plugin before 1.15.2 does not have CRSF check when deleting a shipment, allowing attackers to make any logged in…
The use of `Module._load()` can bypass the policy mechanism and require modules outside of the policy.json definition for a given module. This vulnerability affects all…
A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on…