CVE-2026-48852

PuTTY 0.71 before 0.84 is affected by an assertion failure in ECDSA signature verification (CVE-2026-48852). The public data specifies affected version range and impact but provides no remediation details in the documents. The CVSS v3.1 vector yields a LOW overall impact (availability loss) with ...

CVE-2026-4115

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc-ssh.c of the component Ed25519 Signature Handler. The manipulation results in improper verification of cryptographic signature. The attack may be performed from remote. The attack requires a hi...

UBUNTU-CVE-2026-4115

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc-ssh.c of the component Ed25519 Signature Handler. The manipulation results in improper verification of cryptographic signature. The attack may be performed from remote. The attack requires a hi...

CVE-2026-4115

A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc-ssh.c of the component Ed25519 Signature Handler. The manipulation results in improper verification of cryptographic signature. The attack may be performed from remote. The attack requires a hi...

PuTTY 数据伪造问题漏洞

PuTTY is a set of free Telnet, Rlogin, and SSH clients developed by Simon Tatham. This software is primarily used for remote management of Linux systems. Version 0.83 of PuTTY has a vulnerability related to data manipulation, stemming from improper handling of encrypted signatures in the Ed25519...

Linux Distros Unpatched Vulnerability : CVE-2026-4115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was detected in PuTTY 0.83. Affected is the function eddsaverify of the file crypto/ecc- ssh.c of the component Ed25519 Signature Handler. The...

CVE-2025-58351 Outline's Local File Storage Feature can Cause CSP Bypass

Outline is a service that allows for collaborative documentation. In versions 0.72.0 through 0.83.0, Outline introduced a feature which facilitates local file system storage capabilities as an optional file storage strategy. This feature allowed a CSP bypass as well as a ContentType bypass that...

PT-2023-3260 · Glpi +2 · Glpi +2

Name of the Vulnerable Software and Affected Versions: GLPI versions 0.83 through 9.5.12 GLPI versions 10.0.0 through 10.0.6 Description: The issue is related to incorrect privilege management in GLPI, allowing an authenticated user to modify emails of any other user, including the administrator'...

ABB 1SVR427041R1000 CP-D 12 0.83 Power Supply Detection

Binary data 756490.prm...

Directory traversal

Directory traversal vulnerability in DomPHP 0.83 and earlier allows remote attackers to have unspecified impact via a .. dot dot in the url parameter to photoalbum/index.php...

CVE-2014-10038

SQL injection vulnerability in agenda/indexdate.php in DomPHP 0.83 and earlier allows remote attackers to execute arbitrary SQL commands via the ids parameter...

Sql injection

Multiple SQL injection vulnerabilities in phpWebsite 0.83 and earlier allow remote attackers to execute arbitrary SQL commands via the sid parameter to 1 friend.php or 2 article.php...

CVE-2006-1330

CVE-2006-1330 : Multiple SQL injection vulnerabilities in phpWebsite 0.83 and earlier allow remote attackers to execute arbitrary SQL commands via the sid parameter to (1) friend.php or (2) article.php . This entry is referenced by the NVD listing, which assigns a base score of 7.5 (HIGH) with ne...

CVE-2006-0524

Cross-site scripting XSS vulnerability in ashnews.php in Derek Ashauer ashNews 0.83 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

CVE-2006-0524

CVE-2006-0524 affects ashNews 0.83 (ashnews.php) by a cross-site scripting (XSS) flaw that allows an attacker to inject arbitrary script/HTML through the id parameter. The core issue is improper handling of the id input in ashNews, enabling crafted URLs to execute code in a victim’s browser. Sour...

CVE-2006-0524

Cross-site scripting XSS vulnerability in ashnews.php in Derek Ashauer ashNews 0.83 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

EUVD-2003-1282

PHP remote file include vulnerability in Derek Ashauer ashNews 0.83 allows remote attackers to include and execute arbitrary remote files via a URL in the pathtoashnews parameter to 1 ashnews.php and 2 ashheadlines.php...

[Full-disclosure] ashnews Cross-Site Scripting Vulnerability

Advisory 5 Title: ashnews Cross-Site Scripting Vulnerability Author: 0ozeuso0 and fraude Contact: [email protected] Website: Elitemexico.org Date: 30/01/2006 Risk: High Vendor Url: http://dev.ashwebstudio.com/ Affected Software: ashnews Non Affected: We Are: olimpus klan team TECHNICAL INFO...

CVE-2003-1292

PHP remote file include vulnerability in Derek Ashauer ashNews 0.83 allows remote attackers to include and execute arbitrary remote files via a URL in the pathtoashnews parameter to 1 ashnews.php and 2 ashheadlines.php...