A vulnerability was found in ABB Cylon Aspect 3.08.02 in the escDevicesUpdate.php PHP script, where an off-by-one error in array access could result in undefined behavior and a possible Denial of Service (DoS) attack. The issue occurs in a loop that iterates over an array using a < condition, enabling access to an out-of-bounds index. This could lead to errors or unexpected behavior, potentially causing the application to crash. Exploiting this vulnerability could result in a crash or service disruption, especially with large data sets. The vulnerability can be triggered via the rowCount POST parameter in the Electronic Security Control device update script.
Due to improper handling of user-controlled configuration file parameters, an authenticated attacker can inject and run OS commands on the Ewon Cosy+ VPN gateway.
Typecho 1.3.0 is vulnerable to stored cross-site scripting (XSS). An attacker can exploit this vulnerability to inject malicious scripts into the application, which will be executed in the context of the user's browser. This can lead to theft of sensitive information, session hijacking, or defacement of the website. CVE-2024-35540 has been assigned to this vulnerability.
The exploit allows an attacker to escalate privileges on Microsoft Windows 11 systems by leveraging a vulnerability in the kernel. By manipulating IOCTL buffers and exploiting the SystemHandleInformation method, an attacker can gain elevated privileges on the target system. This vulnerability has been assigned CVE-2024-21338.
A reflected cross-site scripting (XSS) vulnerability was found in phpMyFAQ version 3.1.7. By injecting malicious script code into the 'action' parameter of the URL, an attacker can execute arbitrary scripts in the context of the victim's browser.
By inserting a malicious payload into the description text area while adding a forum in FluxBB 1.5.11, an attacker can store a script that will execute whenever users visit the home page, leading to potential XSS attacks.
The exploit allows an attacker to take over accounts in Cisco Smart Software Manager On-Prem version 8-202206 and earlier. By obtaining necessary tokens, the attacker can gain unauthorized access to user accounts.
Usermin version 2.100 allows an attacker to enumerate valid usernames by sending requests to the password_change.cgi endpoint. By observing the responses, an attacker can identify valid usernames on the system.
The Sonatype Nexus Repository 3.53.0-01 is vulnerable to a path traversal exploit, allowing an attacker to access files and directories outside of the web root directory. This vulnerability has been assigned CVE-2024-4956.
Anchor CMS 0.12.7 is vulnerable to stored cross-site scripting (XSS) attacks. By injecting a malicious script into the post creation fields, an attacker can execute arbitrary scripts in the context of an authenticated user, leading to potential data theft or unauthorized actions. This vulnerability has a CVE identifier pending assignment.
Services By CQR