PT-2026-44128

Name of the Vulnerable Software and Affected Versions Langroid versions prior to 0.63.0 Description SQLChatAgent executes SQL produced by a Large Language Model LLM, which can be influenced by prompt injection. When configured with a database role possessing privileges for code execution or...

EUVD-2008-1928

Malware in sbrugna...

SUSE CVE-2015-2157

The 1 ssh2loaduserkey and 2 ssh2saveuserkey functions in PuTTY 0.51 through 0.63 do not properly wipe SSH-2 private keys from memory, which allows local users to obtain sensitive information by reading the memory...

Debian: Security Advisory (DLA-1763-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2018-12260 · Poppler +4 · Poppler +4

Name of the Vulnerable Software and Affected Versions: Poppler versions prior to 0.63 Description: The issue is caused by an out of bounds read due to incorrect memory access. This can lead to memory corruption and denial of service. It may be exploitable when a victim opens a specially crafted P...

[SECURITY] [DLA 264-1] libmodule-signature-perl security update

Package : libmodule-signature-perl Version : 0.63-1+squeeze2 CVE ID : CVE-2015-3406 CVE-2015-3407 CVE-2015-3408 CVE-2015-3409 Debian Bug : 783451 John Lightsey discovered multiple vulnerabilities in Module::Signature, a Perl module to manipulate CPAN SIGNATURE files. The Common Vulnerabilities an...

PuTTY Information Disclosure vulnerability (Mar 2015) - Windows

PuTTY is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:putty:putty";...

DEBIAN-CVE-2015-2157

The 1 ssh2loaduserkey and 2 ssh2saveuserkey functions in PuTTY 0.51 through 0.63 do not properly wipe SSH-2 private keys from memory, which allows local users to obtain sensitive information by reading the memory...

CVE-2015-2157

The 1 ssh2loaduserkey and 2 ssh2saveuserkey functions in PuTTY 0.51 through 0.63 do not properly wipe SSH-2 private keys from memory, which allows local users to obtain sensitive information by reading the memory...

KLA11444 OSI vulnerability in PuTTY

Information exposure vulnerability was found in PuTTY. Malicious users can exploit this vulnerability locally to obtain sensitive information. Original advisories PuTTY vulnerability private-key-not-wiped-2 Related products PuTTY CVE list CVE-2015-2157 warning Solution Update to the latest versio...

PuTTY -- Four security holes in versions before 0.63

Simon Tatham reports: This 0.63 release fixes multiple security holes in previous versions of PuTTY, which can allow an SSH-2 server to make PuTTY overrun or underrun buffers and crash. ... These vulnerabilities can be triggered before host key verification, which means that you are not even safe...

Sql injection

SQL injection vulnerability in includes/picture.class.php in Galette 0.63, 0.63.1, 0.63.2, 0.63.3, and 0.64rc1 allows remote attackers to execute arbitrary SQL commands via the idadh parameter to picture.php...

CVE-2012-2338

CVE-2012-2338 affects Galette versions 0.63, 0.63.1, 0.63.2, 0.63.3, and 0.64rc1. A flaw in includes/picture.class.php allows SQL injection via the id_adh parameter to picture.php, enabling remote command execution with the database. The vulnerability is documented by NVD, Red Hat, and other feed...

CVE-2008-1928

Buffer overflow in Imager 0.42 through 0.63 allows attackers to cause a denial of service crash via an image based fill in which the number of input channels is different from the number of output channels...