CVE-2021-30331

CVE-2021-30331 concerns a buffer overflow in Qualcomm Snapdragon devices caused by improper data validation of external commands sent via the DIAG interface. Affected products include Snapdragon Auto/Compute/Connectivity/Consumer IOT/Industrial IOT/Mobile/Wearables. Root cause: DIAG external comm...

CVE-2021-30331

Possible buffer overflow due to improper data validation of external commands sent via DIAG interface in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...

OpenEMR Cross-Site Scripting Vulnerability (CNVD-2022-61335)

OpenEMR is an open source healthcare management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. cross-site scripting vulnerabilities exist in versions of OpenEMR prior to...

PT-2022-9994 · Qualcomm · Qualcomm Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to a possible buffer overflow due to improper data validation of external commands sent via the DIAG interface in various Qualcomm Snapdragon products,...

OpenEMR Cross-Site Scripting Vulnerability (CNVD-2022-61338)

OpenEMR is an open source healthcare management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. openEMR has a cross-site scripting vulnerability that stems from the lack ...

OpenEMR Cross-Site Scripting Vulnerability (CNVD-2022-61337)

OpenEMR is an open source healthcare management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing applications. cross-site scripting vulnerabilities exist in versions of OpenEMR prior to...

Firmware Analysis and Comparison Tool跨站脚本漏洞

Firmware Analysis and Comparison Tool FACT, a firmware analysis and comparison tool, is vulnerable to a cross-site scripting vulnerability in Firmware Analysis and Comparison Tool v3.2. The vulnerability stems from a lack of data validation filtering of user-supplied data and output in the user...

Remote Code Execution (RCE)

netatalk is vulnerable to remote code execution. The vulnerability exists due to a lack of validation of the length of user-supplied data prior to copying it to a heap-based buffer...

SourceCodester Microfinance Management System跨站脚本漏洞

SourceCodester Microfinance Management System is an application of SourceCodester, Inc. A cross-site scripting vulnerability exists in SourceCodester Microfinance Management System version 1.0, which stems from The program lacks data validation filters for user-supplied data and output, which can...

Dolphin PHP Cross-Site Scripting Vulnerability

DolphinPhp is a set of Php rapid development framework based on ThinkPhp 5.1.34 Lts. A cross-site scripting vulnerability exists in DolphinPHP 1.5.0 and prior versions, which stems from the program's lack of data validation filtering of user-supplied and output data. An attacker could exploit the...

Pear Admin Think Cross-Site Scripting Vulnerability

Pear Admin Think is a rapid development platform based on thinkphp6 that allows you to quickly build your functional business with simple code generation functionality. pear Admin Think 5.0.6 and prior versions contain a cross-site scripting vulnerability that stems from the program's lack of dat...

SourceCodester One Church Management System跨站脚本漏洞

SourceCodester One Church Management System is an application from SourceCodester, Inc. A cross-site scripting vulnerability exists in SourceCodester One Church Management System, which stems from the program's lack of data validation filtering of user-supplied The vulnerability is caused by a la...

Sourcecodester Student Attendance Management System跨站脚本漏洞

Sourcecodester Student Attendance Management System is an attendance management system used to maintain daily attendance records. A cross-site scripting vulnerability exists in Sourcecodester Student Attendance Management System version 1.0. The vulnerability stems from a lack of data validation...

PT-2022-3234 · Nvidia · Nvidia Jetson Linux Driver Package

Name of the Vulnerable Software and Affected Versions: NVIDIA Jetson Linux Driver Package affected versions not specified Description: The issue is related to insufficient validation of untrusted data in the Cboot ext4 mount function, which may allow a highly privileged local attacker to cause an...

Vulnerability of the Cluster component: The general system for managing MySQL Cluster databases, which allows attackers to gain privileged access

Vulnerability of the MySQL Cluster component: General database management system vulnerabilities in MySQL Cluster exist due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to gain privileged access remotely...

Maccms Cross-Site Scripting Vulnerability (CNVD-2022-30790)

Maccms is a PHP-based film and television content management system CMS. v10 version of Maccms is vulnerable to a cross-site scripting vulnerability, which originates from the lack of user-supplied data and output data validation filtering in the select and input parameters in...

SourceCodester One Church Management System 跨站脚本漏洞

SourceCodester One Church Management System is an application from SourceCodester, Inc. A cross-site scripting vulnerability exists in SourceCodester One Church Management System, which stems from the program's lack of data validation filtering of user-supplied The vulnerability is caused by a la...

Omron CX-Position 缓冲区错误漏洞

Omron CX-Position is a position control software from Omron Corporation of Japan. An out-of-bounds write vulnerability exists in Omron CX-Position, which stems from a failure to properly validate data when a program performs an operation in memory while processing a specific project file, and cou...

DolphinPHP 跨站脚本漏洞

DolphinPhp is a set of Php rapid development framework based on ThinkPhp 5.1.34 Lts. A cross-site scripting vulnerability exists in DolphinPHP 1.5.0 and prior versions, which stems from the program's lack of data validation filtering of user-supplied and output data. An attacker could exploit the...

DouPHP Cross-Site Scripting Vulnerability (CNVD-2022-72218)

A cross-site scripting vulnerability exists in DouPHP, a lightweight enterprise content management system CMS from China DouShell Network Technology. The vulnerability stems from a lack of data validation filtering of user-supplied data and output in the upload function of dmin/show.php. An...