Inserito da Angelo Barbosa | Apr 13, 2026 | CVE
A vulnerability has been found in Craft CMS up to 4.10.2/5.5.4 and classified as problematic. Affected is the function actionPay. Performing a manipulation of the argument email/shipping address/billing address results in...
Per saperne di piùInserito da Angelo Barbosa | Apr 13, 2026 | CVE
A vulnerability, which was classified as problematic, was found in EspoCRM up to 9.3.3. This impacts an unknown function. Such manipulation of the argument post leads to basic cross site scripting. This vulnerability is uniquely...
Per saperne di piùInserito da Angelo Barbosa | Apr 13, 2026 | CVE
A vulnerability, which was classified as critical, has been found in EspoCRM up to 9.3.3. This affects the function HostCheck::isNotInternalHost of the file /api/v1/Attachment/fromImageUrl. This manipulation causes server-side...
Per saperne di piùInserito da Angelo Barbosa | Apr 13, 2026 | CVE
A vulnerability classified as critical was found in Pachno 1.0.6. The impacted element is the function simplexml_load_string of the component XML Parser. The manipulation results in exposure of file descriptor to unintended...
Per saperne di piùInserito da Angelo Barbosa | Apr 13, 2026 | CVE
A vulnerability classified as problematic has been found in Pachno 1.0.6. The affected element is the function runSwitchUser. The manipulation leads to authorization bypass. This vulnerability is traded as CVE-2026-40043. It is...
Per saperne di più