CASAP Automated Enrollment 跨站脚本漏洞

CASAP Automated Enrollment is an automated enrollment system organized by CASAP USA. The purpose of this project is to provide an automated enrollment system for CASAP to streamline the school process and make it more effective, efficient and easy to retrieve. SourceCodester CASAP Automated...

JetBrains YouTrack 跨站脚本漏洞

JetBrains YouTrack is a browser-based bug tracking and project management software from JetBrains Czech Republic. The software has features such as bug tracking, creating workflows and monitoring project progress. A cross-site scripting vulnerability exists in JetBrains YouTrack, which stems from...

WordPress 插件 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress AddToAny Share Buttons plugin in versions prior t...

PHP 跨站脚本漏洞

PHP is a scripting language that executes on the server side. PHP suffers from a security vulnerability that stems from the lack of proper validation of client-side data by the WEB application. An attacker can exploit the vulnerability to execute client-side code...

SourceCodester Tailor Management 跨站脚本漏洞

SourceCodester Tailor Management is an open source tailor management system software from the individual developer Warren Daloyan. A security vulnerability exists in SourceCodester Tailor Management, which stems from a lack of proper validation of client-side data in the web application. An...

Miniftpd Buffer Overflow Vulnerability (CNVD-2021-103090)

Miniftpd is a simplified version of the open source vsftp server for Linux that implements some of the features of vsftp. Miniftpd suffers from a buffer overflow vulnerability, which stems from a networked system or product that does not properly validate data boundaries when performing operation...

PHP Event Calendar 跨站脚本漏洞

PHP Event Calendar is an open source AJAX-based multi-user modern event calendar . It is easy to integrate and fully customizable. PHP Event Calendar Lite Edition suffers from a cross-site scripting vulnerability. The vulnerability stems from a lack of proper validation of client-side data by the...

Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor (PRM) Model 3120 Data Validation Error Vulnerability

The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is a portable cardiac rhythm management Crm programming system from Boston Scientific, Inc. The Boston Scientific ZOOM LATITUDE Programmer/Recorder/Monitor PRM Model 3120 is vulnerable to a data validation error that...

WordPress Cool Tag Cloud plugin cross-site scripting vulnerability

WordPress is the WordPress Foundation's suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blog sites on servers with PHP and MySQL. WordPress Cool Tag Cloud plugin in versions prior to 2.26 suffers from a cross-site scripting vulnerability...

GNU C Library 安全漏洞

The GNU C Library glibc, libc6 is an open source, free C compiler released under the LGPL license. version 2.34 of the GNU C Library aka glibc contains a security vulnerability that stems from a data validation issue in the affected version of the library, iconvdata/iso-2022-jp-3.c's iconv in the...

WordPress Download Manager Plugin Cross-Site Scripting Vulnerability

WordPress is a set of blogging platforms developed by the WordPress Foundation using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress Download Manager Plugin in versions prior to 3.2.16 has a cross-site scripting vulnerability that stems from a...

WordPress MP3 Audio Player for Music, Radio

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. A cross-site scripting vulnerability exists in the WordPress MP3 Audio Player for Music, Radio & Podcast by Sonaar Plugin in versions prior to 2.4.2, which stems from a lack of data validation of...

GitLab 跨站脚本漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery and other features. GitLab suffers from a cross-site scripting vulnerability that stems from the la...

CVE-2017-5123

Insufficient data validation in waitid allowed an user to escape sandboxes on Linux...

CVE-2017-5123

Insufficient data validation in waitid allowed an user to escape sandboxes on Linux...

Input validation

Insufficient data validation in waitid allowed an user to escape sandboxes on Linux...

CVE-2017-5123

Insufficient data validation in waitid allowed an user to escape sandboxes on Linux...

CVE-2017-5123

Insufficient data validation in waitid allowed an user to escape sandboxes on Linux...

CVE-2017-5123

CVE-2017-5123 is a Linux kernel local privilege-escalation vulnerability in the waitid path. The waitid handler in kernel/exit.c writes to user memory by calling unsafe_put_user without performing an access_ok() check, and without wrapping user-space writes in the required user_access_begin()/use...

DynPG 跨站脚本漏洞

Dynpg Organization Dynpg is Dynpg Organization an open source application. It is used to create web sites. A security vulnerability exists in DynPG, which stems from the WEB application's lack of proper validation of client-side data. An attacker can exploit the vulnerability to execute client-si...