[webapps] AEGON LIFE v1.0 Life Insurance Management System – SQL injection vulnerability.
AEGON LIFE v1.0 Life Insurance Management System – SQL injection vulnerability.
[webapps] AEGON LIFE v1.0 Life Insurance Management System – Unauthenticated Remote Code Execution (RCE)
AEGON LIFE v1.0 Life Insurance Management System – Unauthenticated Remote Code Execution (RCE)
Reproduce CVE-2021-3156 on sudoedit [closed]
I am trying to reproduce the aforementioned CVE with sudo version 1.9.5p1.
However, when I try to do sudoedit -s ‘AAAAAAAAAAA\’ I get vim opened without nothing else.
What could be the problem? How can I reproduce the crash?
CVE-2024-5551 | WP Staging Pro Plugin up to 5.6.0 on WordPress cross-site request forgery
A vulnerability was found in WP Staging Pro Plugin up to 5.6.0 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery.
This vulnerability is k…
CVE-2024-4404 | ElementsKit Pro Plugin up to 3.6.1 on WordPress server-side request forgery
A vulnerability was found in ElementsKit Pro Plugin up to 3.6.1 on WordPress. It has been classified as critical. Affected is an unknown function. The manipulation leads to server-side request forgery.
This vulnerability is traded as CVE-2024-4404. It…
CVE-2024-2122 | FooGallery Plugin up to 2.4.15 on WordPress Gallery Custom URL cross site scripting
A vulnerability was found in FooGallery Plugin up to 2.4.15 on WordPress and classified as problematic. This issue affects some unknown processing of the component Gallery Custom URL Handler. The manipulation leads to cross site scripting.
The identif…
CVE-2024-5577 | Where I Was, Where I Will Be Plugin up to 1.1.1 on WordPress file inclusion
A vulnerability has been found in Where I Was, Where I Will Be Plugin up to 1.1.1 on WordPress and classified as critical. This vulnerability affects unknown code. The manipulation leads to file inclusion.
This vulnerability was named CVE-2024-5577. T…
CVE-2024-36588 | Annonshop HTTP Request Privilege Escalation
A vulnerability, which was classified as problematic, was found in Annonshop. This affects an unknown part of the component HTTP Request Handler. The manipulation leads to Privilege Escalation.
This vulnerability is uniquely identified as CVE-2024-365…