CVE Catalog

A man-in-the-middle vulnerability has been identified in the native clients for Amazon WorkSpaces (when using the Amazon DCV protocol), Amazon AppStream 2.0, and Amazon DCV. This vulnerability allows an attacker to access remote sessions by intercepting the communication between the client and the server. The issue affects specific versions of these clients, as detailed below.

An information disclosure vulnerability has been identified in the D-Link DIR-878 router, specifically in version 1.03. The issue arises from an unknown function in the file '/dllog.cgi', within the HTTP POST request handler component. This vulnerability allows sensitive information to be exposed to unauthorized actors, potentially impacting confidentiality. The vulnerability can be exploited remotely, without any authentication requirements.

A vulnerability in GitHub Desktop versions 3.3.15 and through 3.4.12 allows for unauthorized access to user credentials. This issue arises when an attacker convinces a user to clone a repository, either directly or through a submodule, using a maliciously crafted remote URL. GitHub Desktop relies on Git for network operations like cloning and fetching. When Git encounters a remote that requires authentication, it requests credentials from GitHub Desktop using the git-credential protocol. The vulnerability lies in the misinterpretation of the credential request, causing GitHub Desktop to send credentials for a different host than the one currently being accessed by Git. As a result, sensitive information such as GitHub usernames, OAuth tokens, or credentials for other Git remote hosts stored in GitHub Desktop could be improperly transmitted to an unrelated host.

A 'Resource Leak' vulnerability has been identified in CrafterCMS Engine versions 4.0.0 prior to 4.0.8 and 4.1.0 prior to 4.1.6, running on Linux, MacOS, Windows (64-bit), and ARM. This vulnerability allows directory indexing and the exposure of leaked resources.

A server-side request forgery (SSRF) vulnerability has been identified in Wuzhicms version 4.1.0. The issue arises in the 'test' function of 'coreframe/app/search/admin/config.php', where the 'sphinxhost' and 'sphinxport' parameters are not properly validated. This lack of input filtering allows attackers to probe internal network ports, potentially leading to unauthorized access or information disclosure.

A vulnerability exists in Git versions through 2.48.1 that involves the sideband channel used for transporting messages from remote processes to the client. This channel can be exploited because Git does not sanitize messages before they are sent to the standard error output, which is typically connected to a terminal that interprets ANSI escape sequences. Malicious actors could use this oversight to obscure information, mislead users, or trick them into running untrusted scripts. The vulnerability is particularly concerning during recursive clones from untrusted repositories.

A vulnerability exists in Mattermost Mobile Apps in versions through 2.22.0, where the application fails to properly validate post properties. This flaw allows a malicious authenticated user to send a harmful post that can cause the app to crash.

A denial-of-service vulnerability has been identified in Mattermost versions 10.2.0, 9.11.5, 10.0.3, and 10.1.3. This issue arises because the application fails to properly validate post properties, allowing a malicious authenticated user to cause a crash by sending a harmful post.

A denial-of-service vulnerability has been identified in Mattermost versions 10.2.0, 9.11.5, 10.0.3, and 10.1.3. This issue arises because the application fails to properly validate post properties, allowing a malicious authenticated user to cause a crash by sending a harmful post.

A vulnerability exists in Mattermost Mobile Apps in versions 2.22.0 and earlier, where the application fails to properly validate post properties. This flaw allows a malicious authenticated user to send a harmful post that can cause the app to crash.

A stored cross-site scripting vulnerability has been identified in OpenText Solutions Business Manager (SBM) versions through 12.2.1. This vulnerability allows for improper neutralization of input during web page generation, potentially leading to the exposure of private information to unauthorized individuals.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in firmware version 9.1.0cu.2350_B20230313. The vulnerability arises in the 'setWiFiScheduleCfg' function within the '/web/cgi-bin/cstecgi.cgi' file. Authenticated attackers can exploit this issue by sending crafted requests that include malicious commands in the 'desc' parameter, which are then executed on the operating system.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in firmware version 9.1.0cu.2350_B20230313. The vulnerability arises in the 'setWiFiScheduleCfg' function within the '/web/cgi-bin/cstecgi.cgi' file. Authenticated attackers can exploit this issue by sending crafted requests that include malicious commands, which are then executed on the operating system.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in version V9.1.0cu.2350_B20230313. The vulnerability arises in the 'setWiFiScheduleCfg' function, where the 'week' parameter is improperly sanitized, allowing attackers to inject and execute arbitrary OS commands.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in version V9.1.0cu.2350_B20230313. The vulnerability arises in the 'setWiFiScheduleCfg' function, where the 'sHour' parameter is improperly sanitized, allowing attackers to inject and execute arbitrary OS commands.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in firmware version V9.1.0cu.2350_B20230313. The vulnerability arises in the 'setWiFiScheduleCfg' function within the '/web/cgi-bin/cstecgi.cgi' file. Authenticated attackers can exploit this issue by sending crafted requests that include malicious commands, which are then executed on the operating system.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in firmware version V9.1.0cu.2350_B20230313. The vulnerability arises in the 'setWiFiScheduleCfg' function within the '/web/cgi-bin/cstecgi.cgi' file. Authenticated attackers can exploit this issue by sending crafted requests that include malicious payloads, allowing them to execute arbitrary commands on the device.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in firmware version V9.1.0cu.2350_B20230313. The vulnerability arises in the 'setVpnAccountCfg' function within the '/web/cgi-bin/cstecgi.cgi' file. Authenticated attackers can exploit this issue by sending crafted requests that include malicious commands, which are then executed on the device.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in the firmware version v9.1.0cu.2350_B20230313. The vulnerability arises in the 'setVpnAccountCfg' function within the '/web/cgi-bin/cstecgi.cgi' file. Authenticated attackers can exploit this issue by sending crafted requests that include malicious commands, which are then executed on the device.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in firmware version V9.1.0cu.2350_B20230313. The vulnerability arises in the 'setVpnAccountCfg' function within the '/web/cgi-bin/cstecgi.cgi' file. Authenticated attackers can exploit this issue by sending crafted requests that include malicious payloads in the 'pass' parameter, allowing them to execute arbitrary commands on the device.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in firmware version 9.1.0cu.2350_b20230313. The vulnerability arises in the 'setVpnAccountCfg' function within the '/web/cgi-bin/cstecgi.cgi' file. Authenticated attackers can exploit this issue by sending crafted requests that include malicious commands in the 'user', 'pass', 'limit', and 'desc' parameters. These commands are then executed on the operating system, potentially leading to unauthorized command execution.

A command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in version V9.1.0cu.2350_B20230313. The issue arises in the setScheduleCfg function, where the 'hour' parameter is vulnerable to OS command injection.

An OS command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in firmware version 9.1.0cu.2350_B20230313. The vulnerability arises in the 'setScheduleCfg' function within the '/web/cgi-bin/cstecgi.cgi' file. Authenticated attackers can exploit this issue by sending crafted requests that include malicious commands, which are then executed on the device.

A command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in firmware version 9.1.0cu.2350_b20230313. The vulnerability resides in the web interface, within the 'setScheduleCfg' function of the CGI binary '/web/cgi-bin/cstecgi.cgi'. Authenticated attackers can exploit this issue by sending crafted requests that include malicious commands, which are then executed on the operating system.

A command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in version V9.1.0cu.2350_B20230313. The issue arises in the setScheduleCfg function, where the 'week' parameter is vulnerable to operating system command injection.

A command injection vulnerability has been identified in the TOTOLINK X5000R router, specifically in firmware version 9.1.0cu.2350_b20230313. The issue arises in the 'setScheduleCfg' function within the '/web/cgi-bin/cstecgi.cgi' file, where the 'minute' parameter is not properly validated. This flaw allows authenticated attackers to send crafted requests that execute arbitrary commands on the device.

A vulnerability exists in the XNetSocketClient component of XINJE XDPPro.exe, specifically in versions 3.2.2 to 3.7.17c. The issue arises from insecure permissions that allow attackers to execute arbitrary code by modifying the application's configuration file.

A denial-of-service vulnerability has been identified in the XINJE XL5E-16T and XD5E-24R-E programmable logic controllers, specifically in versions V3.5.3b through V3.7.2a. The issue arises from the controllers' handling of Modbus messages over TCP connections within a local area network. When a specific Modbus message is sent to the affected controllers, it can cause the PLC to crash, disrupting the normal operation of any running programs. This crash is indicated by the ERR light turning on and the RUN light turning off.

A denial-of-service vulnerability has been identified in the XINJE XL5E-16T product, specifically in version V3.7.2a. The issue arises from the handling of Modbus messages, allowing attackers to disrupt the normal operation of the device.

A vulnerability allowing code execution as SYSTEM has been identified in Bitdefender Antivirus Free 2020. This untrusted search path vulnerability arises in the 'testinitsigs.exe' component, where a low-privilege attacker can exploit the issue by using a specially crafted DLL file.

A remote code execution vulnerability has been identified in the D-Link DWR-M972V router, specifically in the 1.05SSG firmware version. The issue arises from improper authentication, allowing an attacker to access the device via SSH as the root user, without any password requirements. This vulnerability is present in the default configuration and can be exploited through both local and WAN ports.

A SQL injection vulnerability has been identified in the Vertim Coders Neon Product Designer plugin for WordPress, affecting versions through 2.1.1. This vulnerability allows for improper neutralization of special elements used in SQL commands, potentially enabling attackers to manipulate database queries and interact with the database in unauthorized ways.

A stored cross-site scripting vulnerability has been identified in the CHR Designer Responsive jQuery Slider plugin for WordPress, affecting versions through 1.1.1. This vulnerability arises from improper input sanitization during web page generation, allowing malicious scripts to be injected and executed when users visit the affected site.

A stored cross-site scripting vulnerability has been identified in the WordPress Gallery and Lightbox plugin, affecting versions through 1.0.14. This issue allows attackers to inject malicious scripts that are executed when users visit the affected site.

A reflected cross-site scripting vulnerability has been identified in the Thorsten Krug Multilang Contact Form plugin, affecting versions through 1.5. This issue arises from improper input sanitization during web page generation, allowing attackers to inject malicious scripts that are executed when users visit the affected site.

A DOM-based cross-site scripting vulnerability has been identified in the Bold Pagos En Linea WordPress plugin, affecting versions through 3.1.4. This issue arises from improper input neutralization during web page generation, allowing malicious actors to inject and execute harmful scripts on the site.

A stored cross-site scripting vulnerability has been identified in the Codexpert CoDesigner WooCommerce Builder for Elementor, affecting versions through 4.7.17.2. This vulnerability arises from improper input neutralization during web page generation, allowing malicious scripts to be injected and executed when users visit the affected site.

A broken access control vulnerability has been identified in the bPlugins LLC Button Block WordPress plugin, affecting versions through 1.1.5. This vulnerability allows users to access functionalities that are not properly restricted by access control lists (ACLs), potentially leading to unauthorized actions.

A path traversal vulnerability allowing PHP local file inclusion has been identified in the ElementInvader Addons for Elementor plugin, affecting versions through 1.2.6. This vulnerability could enable a malicious actor to include local files from the target website and display their contents, potentially leading to a complete database takeover if sensitive files containing database credentials are accessed.

A SQL injection vulnerability has been identified in the ComMotion Course Booking System, affecting versions through 6.0.5. This vulnerability allows for improper neutralization of special elements used in SQL commands, enabling malicious actors to manipulate database queries and potentially access or modify database information.

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the WordPress Background Control plugin, specifically in versions through 1.0.5. This vulnerability allows for path traversal, potentially leading to arbitrary file deletion.

A remote code execution vulnerability has been identified in the Web Ready Now WR Price List Manager for WooCommerce, affecting versions through 1.0.8. This vulnerability allows unrestricted upload of files with dangerous types, such as web shells, which can be executed on the web server.

A DOM-based cross-site scripting vulnerability has been identified in the Nativery Developer WordPress plugin, affecting versions through 0.1.6. This issue arises from improper input sanitization during web page generation, allowing malicious actors to inject and execute harmful scripts on the affected site.

A stored cross-site scripting vulnerability has been identified in the WordPress wp-pano plugin, affecting versions through 1.17. This issue allows for improper neutralization of input during web page generation, enabling the injection of malicious scripts that are executed when users visit the affected site.

A broken access control vulnerability has been identified in the WordPress WP News Sliders plugin, affecting versions through 1.0. This vulnerability arises from missing authorization checks, which could allow an unprivileged user to perform actions reserved for higher privileged users.

A reflected cross-site scripting vulnerability has been identified in the Lijit Search WordPress plugin, specifically in versions through 1.1. This issue allows attackers to inject malicious scripts that are executed when users visit the affected site.

A reflected cross-site scripting vulnerability has been identified in the WordPress WP Bulletin Board plugin, affecting versions through 1.1.4. This issue allows attackers to inject malicious scripts that are executed when users visit the affected page.

A broken authentication vulnerability has been identified in the WPChill Htaccess File Editor plugin, affecting versions through 1.0.19. This vulnerability allows attackers to exploit improperly configured access control, potentially performing actions reserved for higher-privileged users.

A stored cross-site scripting vulnerability has been identified in the Creative Brahma Multifox WordPress theme, affecting versions through 1.3.7. This issue allows attackers to inject malicious scripts that are executed when users visit the affected site.

A reflected cross-site scripting vulnerability has been identified in the Zarinpal Paid Download WordPress plugin, affecting versions through 2.3. This issue allows attackers to inject malicious scripts that could be executed when users visit the affected site.