CVE-2023-47295 – NCR Terminal Handler CSV Injection Vulnerability

June 23, 2025

CVE ID : CVE-2023-47295

Published : June 23, 2025, 4:15 p.m. | 2 hours, 9 minutes ago

Description : A CSV injection vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands via injecting a crafted payload into any text field that accepts strings.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2023-50450 – Sensopart VISOR Vision Sensors Local Privilege Escalation

Next Article CVE-2023-47032 – NCR Terminal Handler Remote Code Execution Vulnerability

Highlights

CVE-2025-4269 – TOTOLINK Log Handler Remote Code Execution Vulnerability

May 5, 2025

CVE ID : CVE-2025-4269

Published : May 5, 2025, 7:15 a.m. | 20 minutes ago

Description : A vulnerability was found in TOTOLINK A720R 4.1.5cu.374 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/cstecgi.cgi of the component Log Handler. The manipulation of the argument topicurl with the input clearDiagnosisLog/clearSyslog/clearTracerouteLog leads to improper access controls. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Agent Mode for Gemini added to Android Studio

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

Vite 7.0 Is Out

Vite 7.0 Is Out

Exploring JavaScript ES2025 Edition

Mastering Mixed DML Operations in Apex

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

CVE-2023-47295 – NCR Terminal Handler CSV Injection Vulnerability

Critical Kibana Flaws: CVE-2025-2135 (CVSS 9.9) Allows Heap Corruption & RCE; Open Redirect Also Patched

CVE-2025-0966 – IBM InfoSphere Information Server SQL Injection Vulnerability

Urgent Veeam Update: Critical RCE CVE-2025-23121 (CVSS 9.9) & Two Other Flaws Threaten Backup Servers

WWE Cactus Jack x WWE Merchandise

How to Debug CI/CD Pipelines: A Handbook on Troubleshooting with Observability Tools

Google fixes actively exploited FreeType flaw on Android

CVE-2025-4269 – TOTOLINK Log Handler Remote Code Execution Vulnerability

CVE-2025-5945 – Centreon Centreon-web OS Command Injection

Week in review: MITRE ATT&CK v17.0 released, PoC for Erlang/OTP SSH bug is public

CVE-2024-13344 – WooCommerce Advance Seat Reservation SQL Injection

CVE-2023-47295 – NCR Terminal Handler CSV Injection Vulnerability

Related Posts