Common Vulnerabilities and Exposures

Cross-site scripting in Observium via separate vulnerable endpoint

Cross-site scripting in Observium via additional injection point

XSS w Observium przez podatne parametry

Authenticated directory traversal and local file inclusion in Observium via additional endpoint

Cross-site scripting in Observium allows script injection via crafted input

Authenticated directory traversal and local file inclusion in Observium via different parameter

Authenticated directory traversal and local file inclusion in Observium allows reading server files

SQL injection in Observium via different injection point allows database attacks

Cross-site scripting in Observium network monitoring platform allows script injection

SQL injection in Observium network monitoring platform allows database manipulation

Cross-site scripting in SilverStripe Advanced Reports Module allows script injection

Przepełnienie pamięci w Microsoft Edge (EdgeHTML) umożliwia zdalne wykonanie kodu przez spreparowaną zawartość webową

DLL hijacking in touchpad driver allows local attackers to execute arbitrary code with elevated privileges

Insecure direct object reference in ACF to REST API WordPress plugin allows unauthorized data access via permalink manipulation

Unauthenticated server-side request forgery in Bitrix CRM allows attackers to access internal systems