Kategori: NIST-Təhlükəsizlik Zəiflikləri

CVE-2023-25001

A maliciously crafted SKP file in Autodesk Navisworks 2023 and 2022 be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code…

Devamını oku

CVE-2023-25002

A maliciously crafted SKP file in Autodesk products is used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution. Zafiyet ile…

Devamını oku

CVE-2020-18409

Cross Site Request Forgery (CSRF) vulnerability was discovered in CatfishCMS 4.8.63 that would allow attackers to obtain administrator permissions via /index.php/admin/index/modifymanage.html. Zafiyet ile ilgili Genel…

Devamını oku

CVE-2020-18414

Stored cross site scripting (XSS) vulnerability in Chaoji CMS v2.18 that allows attackers to execute arbitrary code via /index.php?admin-master-webset. Zafiyet ile ilgili Genel Bilgi, Etki…

Devamını oku

CVE-2020-18410

A stored cross site scripting (XSS) vulnerability in /index.php?admin-master-article-edit of Chaoji CMS v2.18 that allows attackers to obtain administrator privileges. Zafiyet ile ilgili Genel Bilgi,…

Devamını oku

CVE-2020-18413

Stored cross site scripting (XSS) vulnerability in /index.php?admin-master-navmenu-add of Chaoji CMS v2.18 that allows attackers to execute arbitrary code. Zafiyet ile ilgili Genel Bilgi, Etki…

Devamını oku

CVE-2020-18416

An cross site request forgery (CSRF) vulnerability discovered in Jymusic v2.0.0.,that allows attackers to execute arbitrary code via /admin.php?s=/addons/config.html&id=6 to modify payment information. Zafiyet ile…

Devamını oku