Szolgáltatóknak | HunCERT csoport

2024. aug. 12.

Riasztás

NA - CVE-2024-42489 - Pro Macros provides XWiki rendering macros....

Pro Macros provides XWiki rendering macros. Missing escaping in the Viewpdf macro allows any user with view right on the `CKEditor.HTMLConverter` page or edit or comment right on any page to...

security-database.com

Tovább

2024. aug. 12.

Riasztás

NA - CVE-2024-42628 - FrogCMS v0.9.5 was discovered to contain a...

FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/edit/3.

security-database.com

Tovább

2024. aug. 12.

Riasztás

NA - CVE-2024-42629 - FrogCMS v0.9.5 was discovered to contain a...

FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/page/edit/10.

security-database.com

Tovább

2024. aug. 12.

Riasztás

NA - CVE-2024-42630 - FrogCMS v0.9.5 was discovered to contain a...

FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/plugin/file_manager/create_file.

security-database.com

Tovább

2024. aug. 12.

Riasztás

NA - CVE-2024-42631 - FrogCMS v0.9.5 was discovered to contain a...

FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/layout/edit/1.

security-database.com

Tovább

2024. aug. 12.

Riasztás

NA - CVE-2024-42632 - FrogCMS v0.9.5 was discovered to contain a...

FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/page/add.

security-database.com

Tovább

2024. aug. 12.

Riasztás

NA - CVE-2024-40500 - Cross Site Scripting vulnerability in Martin...

Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component.

security-database.com

Tovább

2024. aug. 12.

Riasztás

NA - CVE-2024-41475 - Gnuboard g6 6.0.7 is vulnerable to Session...

Gnuboard g6 6.0.7 is vulnerable to Session hijacking due to a CORS misconfiguration.

security-database.com

Tovább

2024. aug. 12.

Riasztás

NA - CVE-2024-41651 - An issue in Prestashop v.8.1.7 and before...

An issue in Prestashop v.8.1.7 and before allows a remote attacker to execute arbitrary code via the module upgrade functionality.

security-database.com

Tovább

2024. aug. 12.

Riasztás

NA - CVE-2024-42474 - Streamlit is a data oriented application...

Streamlit is a data oriented application development framework for python. Snowflake Streamlit open source addressed a security vulnerability via the static file sharing feature. Users of hosted...

security-database.com

Tovább

Telefon:	+36 1 279 6222 (09:00-16:00)
Email:	@email
Cím:	1111 Budapest, Kende u. 13-17.