The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account.
https://www.twcert.org.tw/tw/cp-132-7923-46df3-1.html
https://www.twcert.org.tw/en/cp-139-7924-85606-2.html
Description zot is a production-ready vendor-neutral OCI image registry. The group data stored for users in the boltdb database (meta.db)
Description Server-Side Request Forgery in URL Mapper in Arctic Security’s Arctic Hub versions 3.0.1764-5.6.1877 allows an unauthenticated remote attacker to
Description A server-side request forgery exists in Satellite. When a PUT HTTP request is made to /http_proxies/test_connection, when supplied with