EUVD-2024-29311

Malicious code in bioql PyPI...

WordPress All Bootstrap Blocks Plugin <= 1.3.28 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Denver Jackson in WordPress Plugin All Bootstrap Blocks versions = 1.3.28...

CVE-2024-31422

Cross-Site Request Forgery CSRF vulnerability in Philippe Bernard Favicon.This issue affects Favicon: from n/a through 1.3.29...

SUSE CVE-2004-0490

cPanel, when compiling Apache 1.3.29 and PHP with the modphpsuexec option, does not set the --enable-discard-path option, which causes php to use the SCRIPTFILENAME variable to find and execute a script instead of the PATHTRANSLATED variable, which allows local users to execute arbitrary PHP code...

Mageia: Security Advisory (MGASA-2018-0228)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : GraphicsMagick (openSUSE-2018-518)

GraphicsMagick was updated to 1.3.29 : - Security Fixes : - GraphicsMagick is now participating in Google's oss-fuzz project - JNG: Require that the embedded JPEG image have the same dimensions as the JNG image as provided by JHDR. Avoids a heap write overflow. - MNG: Arbitrarily limit the number...

Updated graphicsmagick packages fix security vulnerabilities

GraphicsMagick 1.3.29 updated with fixes for several security issues...

WordPress WebDorado Gallery 1.3.29 Plugin - SQL Injection Vulnerability

Exploit for php platform in category web applications Source: http://www.defensecode.com/advisories/DC-2017-02-011WordPressWebDoradoGalleryPluginAdvisory.pdf DefenseCode ThunderScan SAST Advisory WordPress WebDorado Gallery Plugin - SQL Injection Vulnerability Advisory ID: DC-2017-02-011 Software...

Caucho Technology Resin 2.1.12 Directory Listings Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9617/info It has been reported that Resin may be prone to an information disclosure vulnerability that may allow an attacker to disclose directory listings by passing malicious data via a URI parameter. The issue has been...

FreeBSD : apache -- http request smuggling (651996e0-fe07-11d9-8329-000e0c2e438a)

A Watchfire whitepaper reports an vulnerability in the Apache webserver. The vulnerability can be exploited by malicious people causing cross site scripting, web cache poisoining, session hijacking and most importantly the ability to bypass web application firewall protection. Exploiting this...

apache -- http request smuggling

A Watchfire whitepaper reports an vulnerability in the Apache webserver. The vulnerability can be exploited by malicious people causing cross site scripting, web cache poisoining, session hijacking and most importantly the ability to bypass web application firewall protection. Exploiting this...

Caucho Technology Resin 2.1.12 - Directory Listings Disclosure

Caucho Technology Resin 2.1.12 - Directory Listings Disclosure source: https://www.securityfocus.com/bid/9617/info It has been reported that Resin may be prone to an information disclosure vulnerability that may allow an attacker to disclose directory listings by passing malicious data via a URI...

Caucho Technology Resin 2.1.12 - Directory Listings Disclosure

source: https://www.securityfocus.com/bid/9617/info It has been reported that Resin may be prone to an information disclosure vulnerability that may allow an attacker to disclose directory listings by passing malicious data via a URI parameter. The issue has been reported to present itself on...