‼ CVE-2023-2047 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in Campcodes Advanced Online Voting System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument voter leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-225932.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2042 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability, which was classified as problematic, has been found in DataGear up to 4.5.1. Affected by this issue is some unknown functionality of the component JDBC Server Handler. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-225920. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2049 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in Campcodes Advanced Online Voting System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/ballot_up.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-225934 is the identifier assigned to this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2048 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in Campcodes Advanced Online Voting System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/voters_row.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-225933 was assigned to this vulnerability.📖 Read
via "National Vulnerability Database".
🕴 What the Recent Collapse of SVB Means for Privacy 🕴
📖 Read
via "Dark Reading".
Businesses must be diligent in their actions, cultivate awareness with employees, and implement strict standards around external communications in the wake of Silicon Valley Bank's collapse.📖 Read
via "Dark Reading".
Dark Reading
What the Recent Collapse of SVB Means for Privacy
Businesses must be diligent in their actions, cultivate awareness with employees, and implement strict standards around external communications in the wake of Silicon Valley Bank's collapse.
‼ CVE-2023-26980 ‼
📖 Read
via "National Vulnerability Database".
PAX Technology PAX A920 Pro PayDroid 8.1suffers from a Race Condition vulnerability, which allows attackers to bypass the payment software and force the OS to boot directly to Android during the boot process.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27643 ‼
📖 Read
via "National Vulnerability Database".
An issue found in POWERAMP 925-bundle-play and Poweramp 954-uni allows a remote attacker to cause a denial of service via the Rescan button in Queue and Select Folders button in Library📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2052 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability classified as critical was found in Campcodes Advanced Online Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ballot_down.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-225937 was assigned to this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26756 ‼
📖 Read
via "National Vulnerability Database".
The login page of Revive Adserver v5.4.1 is vulnerable to brute force attacks.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27649 ‼
📖 Read
via "National Vulnerability Database".
SQL injection vulnerability found in Trusted Tools Free Music v.2.1.0.47, v.2.0.0.46, v.1.9.1.45, v.1.8.2.43 allows a remote attacker to cause a denial of service via the search history table📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29569 ‼
📖 Read
via "National Vulnerability Database".
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ffi_cb_impl_wpwwwww at src/mjs_ffi.c. This vulnerability can lead to a Denial of Service (DoS).📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27193 ‼
📖 Read
via "National Vulnerability Database".
An issue found in DUALSPACE v.1.1.3 allows a local attacker to gain privileges via the key_ad_new_user_avoid_time field.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2053 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability, which was classified as critical, has been found in Campcodes Advanced Online Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/candidates_row.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-225938 is the identifier assigned to this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27651 ‼
📖 Read
via "National Vulnerability Database".
An issue found in Ego Studio SuperClean v.1.1.9 and v.1.1.5 allows an attacker to gain privileges via the update_info field of the _default_.xml file.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26559 ‼
📖 Read
via "National Vulnerability Database".
A directory traversal vulnerability in Oxygen XML Web Author before 25.0.0.3 build 2023021715 and Oxygen Content Fusion before 5.0.3 build 2023022015 allows an attacker to read files from a WEB-INF directory via a crafted HTTP request. (XML Web Author 24.1.0.3 build 2023021714 and 23.1.1.4 build 2023021715 are also fixed versions.)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27666 ‼
📖 Read
via "National Vulnerability Database".
Auto Dealer Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the name parameter at /classes/SystemSettings.php?f=update_settings.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29584 ‼
📖 Read
via "National Vulnerability Database".
mp4v2 v2.0.0 was discovered to contain a heap buffer overflow via the MP4GetVideoProfileLevel function at /src/mp4.cpp.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27648 ‼
📖 Read
via "National Vulnerability Database".
Directory Traversal vulnerability found in T-ME Studios Change Color of Keypad v.1.275.1.277 allows a remote attacker to execute arbitrary code via the dex file in the internal storage.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-1617 ‼
📖 Read
via "National Vulnerability Database".
Improper Authentication vulnerability in B&R Industrial Automation B&R VC4 (VNC-Server modules). This vulnerability may allow an unauthenticated network-based attacker to bypass the authentication mechanism of the VC4 visualization on affected devices. The impact of this vulnerability depends on the functionality provided in the visualization. This issue affects B&R VC4: from 3.* through 3.96.7, from 4.0* through 4.06.7, from 4.1* through 4.16.3, from 4.2* through 4.26.8, from 4.3* through 4.34.6, from 4.4* through 4.45.1, from 4.5* through 4.45.3, from 4.7* through 4.72.9.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-47027 ‼
📖 Read
via "National Vulnerability Database".
Timmystudios Fast Typing Keyboard v1.275.1.162 allows unauthorized apps to overwrite arbitrary files in its internal storage via a dictionary traversal vulnerability and achieve arbitrary code execution.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2055 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability has been found in Campcodes Advanced Online Voting System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/config_save.php. The manipulation of the argument title leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-225940.📖 Read
via "National Vulnerability Database".