25 matches found
CVE-2019-25354 iSmartViewPro 1.3.34 - Denial of Service
iSmartViewPro 1.3.34 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the camera ID input field. Attackers can paste a 257-character buffer into the camera DID and password fields to trigger an application crash on iOS devices...
CVE-2019-25354
The CVE-2019-25354 entry concerns iSmartViewPro version 1.3.34, where a denial-of-service vulnerability can crash the app by overflowing the camera ID input field. The issue can be triggered when a user pastes a 257-character buffer into the camera DID and password fields, causing a crash on iOS ...
PT-2026-20529
iSmartViewPro 1.3.34 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the camera ID input field. Attackers can paste a 257-character buffer into the camera DID and password fields to trigger an application crash on iOS devices...
Smarteye iSmartViewPro 安全漏洞
Smarteye iSmartViewPro is a remote monitoring application for webcams developed by Smarteye Company in China. Version 1.3.34 of Smarteye iSmartViewPro contains a security vulnerability. This vulnerability allows attackers to cause the application to crash by entering the camera ID field,...
EUVD-2022-6915
Malicious code in bioql PyPI...
WordPress HTML Forms plugin < 1.3.34 - Bulk Delete via CSRF vulnerability
Bulk Delete via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin HTML Forms versions 1.3.34...
WordPress plugin HTML Forms 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the...
PT-2024-37605 · WordPress · Html Forms
Name of the Vulnerable Software and Affected Versions: HTML Forms WordPress plugin versions prior to 1.3.34 Description: The issue concerns a lack of CSRF checks in certain areas, potentially allowing attackers to trick logged-in users into performing unintended actions through CSRF attacks...
CVE-2023-27460
Missing Authorization vulnerability in CodePeople, paypaldev CP Contact Form with Paypal allows Functionality Misuse.This issue affects CP Contact Form with Paypal: from n/a through 1.3.34...
WordPress CP Contact Form with Paypal Plugin <= 1.3.34 is vulnerable to Other Vulnerability Type
Software CP Contact Form with Paypal Type Plugin Vulnerable versions = 1.3.34 Fixed in 1.3.35 OWASP Top 10 A5: Broken Access Control Classification Other Vulnerability Type CVE CVE-2023-27460 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID b103753de482 Credits István Márto...
CVE-2022-36058
Elrond go is the go implementation for the Elrond Network protocol. In versions prior to 1.3.34, anyone who uses elrond-go to process blocks historical or actual could encounter a MultiESDTNFTTransfer transaction like this: MultiESDTNFTTransfer with a missing function name. Basic functionality li...
Design/Logic Flaw
Elrond go is the go implementation for the Elrond Network protocol. In versions prior to 1.3.34, anyone who uses elrond-go to process blocks historical or actual could encounter a MultiESDTNFTTransfer transaction like this: MultiESDTNFTTransfer with a missing function name. Basic functionality li...
CVE-2022-36058 elrond-go MultiESDTNFTTransfer call on a SC address with missing function name
Elrond go is the go implementation for the Elrond Network protocol. In versions prior to 1.3.34, anyone who uses elrond-go to process blocks historical or actual could encounter a MultiESDTNFTTransfer transaction like this: MultiESDTNFTTransfer with a missing function name. Basic functionality li...
CVE-2022-36058 elrond-go MultiESDTNFTTransfer call on a SC address with missing function name
Elrond go is the go implementation for the Elrond Network protocol. In versions prior to 1.3.34, anyone who uses elrond-go to process blocks historical or actual could encounter a MultiESDTNFTTransfer transaction like this: MultiESDTNFTTransfer with a missing function name. Basic functionality li...
Elrond go 输入验证错误漏洞
Elrond go is an open source go implementation of the Elrond Network protocol by Elrond Network. An input validation error vulnerability exists in Elrond go versions prior to 1.3.34, which stems from a missing function name in MultiESDTNFTTransfer...
PT-2022-23149 · Elrond · Elrond-Go
Name of the Vulnerable Software and Affected Versions: elrond-go versions prior to 1.3.34 Description: The issue affects elrond-go, the go implementation for the Elrond Network protocol. In affected versions, processing blocks that contain a MultiESDTNFTTransfer transaction with a missing functio...
CVE-2021-21963
An information disclosure vulnerability exists in the Web Server functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted man-in-the-middle attack can lead to a disclosure of sensitive information. An attacker can perform a man-in-the-middle attack to trigger this...
CVE-2021-21965
A denial of service vulnerability exists in the SeaMax remote configuration functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. Specially-crafted network packets can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability...
PT-2022-9214 · Sealevel Systems · Seaconnect 370W
Name of the Vulnerable Software and Affected Versions: Sealevel Systems, Inc. SeaConnect 370W version 1.3.34 Description: A stack-based buffer overflow issue exists in the LLMNR functionality, allowing remote code execution through a specially-crafted network packet. An attacker can exploit this ...
PT-2022-9222 · Sealevel Systems · Seaconnect 370W
Name of the Vulnerable Software and Affected Versions: Sealevel Systems, Inc. SeaConnect 370W version 1.3.34 Description: A file write issue exists in the OTA update task functionality. This can be triggered by a specially-crafted MQTT payload, allowing for arbitrary file overwrite. An attacker c...