Description A vulnerability in the web-based management interface of Cisco Unified Industrial Wireless Software for Cisco Ultra-Reliable Wireless Backhaul (URWB)
Description A vulnerability in a REST API endpoint and web-based management interface of Cisco Nexus Dashboard Fabric Controller (NDFC) could
Description symfony/runtime is a module for the Symphony PHP framework which enables decoupling PHP applications from global state. When the
Description IBM Maximo Application Suite – Monitor Component 8.10.11, 8.11.8, and 9.0.0 is vulnerable to cross-site scripting. This vulnerability allows
In today’s interconnected digital world, enterprise-level API security is critical for businesses of all sizes, particularly small to medium-sized businesses
Description Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted
Description In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel bug due to missing clearing of
Description In the Linux kernel, the following vulnerability has been resolved: nfsd: fix race between laundromat and free_stateid There is
Description In the Linux kernel, the following vulnerability has been resolved: drm/xe/oa: Fix overflow in oa batch buffer By default
Description D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the SetWanSettings function.
Cyber Warfare is the use of digital attacks by one country or organization to damage or disrupt another country’s critical
Description An XML External Entity (XXE) vulnerability in Dmoz2CSV in openimaj v1.3.10 allows attackers to access sensitive information or execute
Description An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a remote attacker to cause a denial
Description Akamai SIA (Secure Internet Access Enterprise) ThreatAvert, in SPS (Security and Personalization Services) before the latest 19.2.0 patch and
Description Improper Control of Generation of Code (‘Code Injection’) vulnerability in BG-TEK Informatics Security Technologies CoslatV3 allows Command Injection.This issue
Description This vulnerability exists in Aero due to improper implementation of OTP validation mechanism in certain API endpoints. An authenticated
Description There exists a Path Traversal vulnerability in Safearchive on Platforms with Case-Insensitive Filesystems (e.g., NTFS). This allows Attackers to
Description A vulnerability was found in Tenda AC6 15.03.05.19 and classified as critical. Affected by this issue is the function
Description IBM CICS TX Standard is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript
Description `oak` is a middleware framework for Deno’s native HTTP server, Deno Deploy, Node.js 16.5 and later, Cloudflare Workers and
Description IBM TXSeries for Multiplatforms 10.1 could allow an attacker to obtain sensitive information from the query string of an
Description An issue in Ladybird Web Solution Faveo Helpdesk & Servicedesk (On-Premise and Cloud) 9.2.0 allows a remote attacker to
Description A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a local attacker
Description CyberPanel (aka Cyber Panel) before 2.3.5 allows Command Injection via completePath in the ProcessUtilities.outputExecutioner() sink. There is /filemanager/upload (aka