185 matches found
Apache Tapestry - Remote Code Execution
Apache Tapestry contains a critical unauthenticated remote code execution vulnerability. Affected versions include 5.4.5, 5.5.0, 5.6.2 and 5.7.0. Note that this vulnerability is a bypass of the fix for CVE-2019-0195. Before that fix it was possible to download arbitrary class files from the...
MiracleLinux 4 : openssl-1.0.1e-16.AXS4.14 (AXSA:2014-381:03)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-381:03 advisory. OpenSSL is a toolkit for supporting cryptography. The openssl-devel package contains include files needed to develop applications which support vario...
EUVD-2021-0195
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2023-0195
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer driver nvlddmkm.sys, where an can cause CWE-1284, which may lead to...
TencentOS Server 3: bind9.16 (TSSA-2025:0195)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0195 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
CVE-2025-0195
A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/delproduct.php. The manipulation of the argument id leads to sql injection. The attack may be launch...
CVE-2020-0195
In ihevcdiquantitransreconctb of ihevcdiquantitransreconctb.c and related functions, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for...
CVE-2019-0195
Manipulating classpath asset file URLs, an attacker could guess the path to a known file in the classpath and have it downloaded. If the attacker found the file with the value of the tapestry.hmac-passphrase configuration symbol, most probably the webapp's AppModule class, the value of this symbo...
CVE-2025-0195 code-projects Point of Sales and Inventory Management System del_product.php sql injection
A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/delproduct.php. The manipulation of the argument id leads to sql injection. The attack may be launch...
CVE-2025-0195 code-projects Point of Sales and Inventory Management System del_product.php sql injection
A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/delproduct.php. The manipulation of the argument id leads to sql injection. The attack may be launch...
OpenSSL DTLS Fragment Buffer Overflow / Denial of Service
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OpenSSL DTLS Fragment Buffer Overflow DoS', 'Description' = %q This module performs a Denial of Service Attack against Datagram TLS in OpenSSL...
Photon OS 4.0: Linux PHSA-2022-4.0-0195
An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-4.0-0195. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Mageia: Security Advisory (MGASA-2024-0195)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 8 / 9 : OpenShift Container Platform 4.13.29 (RHSA-2024:0195)
The remote Redhat Enterprise Linux 8 / 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:0195 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private clo...
CVE-2024-0195
SpiderFlow 0.4.3 contains a code-injection vulnerability in FunctionService.saveFunction (FunctionController.java) that enables remote code execution. Multiple public references (NVD/Nuclei template, Red Hat/RH CVE pages, and GitHub exploit pages) confirm unauthenticated remote exploitation with ...
CVE-2019-0195
creationtimestamp| type| source ---|---|--- 2023-11-17 07:08:00+00:00| published-proof-of-concept| https://t.me/arpsyndicate/228...
Rockwell Automation Stratix DTLS Invalid Fragment (CVE-2014-0195)
Multiple Cisco products incorporate a version of the OpenSSL package affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to execute arbitrary code, create a denial of service DoS condition, or perform a man-in-the-middle attack. This plugin only works with...
CVE-2021-0195
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none...
Security Bulletin: IBM BladeCenter Advanced Management Module is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, and CVE-2014-3470.
Summary Security vulnerabilities have been discovered in OpenSSL that were reported on June 5, 2014 by the OpenSSL Project. Vulnerability Details Abstract Security vulnerabilities have been discovered in OpenSSL that were reported on June 5, 2014 by the OpenSSL Project. Content Vulnerability...
CVE-2023-0195
creationtimestamp| type| source ---|---|--- 2023-04-01 12:22:51+00:00| seen| https://t.me/cibsecurity/61292...