35 matches found
EUVD-2019-10663
Malware in sbrugna...
EUVD-2019-5656
Malware in sbrugna...
EUVD-2019-9111
Malware in sbrugna...
CVE-2019-14471
TestLink 1.9.19 has XSS via the error.php message parameter...
CVE-2016-10962
The icegram plugin before 1.9.19 for WordPress has CSRF via the wp-admin/edit.php optionname parameter...
WordPress plugin BigBuy Dropshipping Connector for WooCommerce 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
PT-2025-6563 · WordPress +1 · Bigbuy Dropshipping Connector For Woocommerce +1
Name of the Vulnerable Software and Affected Versions: BigBuy Dropshipping Connector for WooCommerce plugin for WordPress versions up to, and including, 1.9.19 Description: The vulnerability is due to the /vendor/cocur/slugify/bin/generate-default.php file being directly accessible and triggering...
CVE-2024-45508
HTMLDOC before 1.9.19 has an out-of-bounds write in parseparagraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node...
HTMLDOC 安全漏洞
HTMLDOC is an open source program by Michael R Sweet, an individual developer, that converts HTML and Markdown files to EPUB, Indexed HTML, PostScript, and PDF format files. A security vulnerability exists in HTMLDOC versions prior to 1.9.19, which stems from an out-of-bounds write in the...
CVE-2024-45508
CVE-2024-45508 affects HTMLDOC prior to 1.9.19. The issue is an out-of-bounds write in parse_paragraph (ps-pdf.cxx) caused by attempting to strip leading whitespace from a whitespace-only node. Connected advisories (Mageia, openSUSE, Ubuntu USN, OSV) confirm the same root cause and indicate a pat...
PT-2024-31668 · Htmldoc +3 · Htmldoc +3
Name of the Vulnerable Software and Affected Versions: HTMLDOC versions prior to 1.9.19 Description: The issue is related to an out-of-bounds write in the parse paragraph function in ps-pdf.cxx due to an attempt to strip leading whitespace from a whitespace-only node. This flaw can lead to a...
WordPress Plugin Academy LMS Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on servers running PHP and MySQL.WordPress plugin i...
PT-2024-18098 · WordPress · The Academy Lms
Name of the Vulnerable Software and Affected Versions: The Academy LMS – eLearning and online course solution for WordPress plugin versions up to, and including, 1.9.19 Description: The issue is related to privilege escalation due to the plugin allowing arbitrary user meta updates through the sav...
Samba 1.9.18 Elevate Privileges Vulnerability (CVE-1999-1288)
Samba is prone to a elevate privileges vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
TestLink SQL Injection Vulnerability (CNVD-2020-16091)
TestLink is a set of open source software for managing the software testing process and providing statistical analysis. A SQL injection vulnerability exists in TestLink 1.9.19 and earlier versions. The vulnerability stems from a lack of validation of externally entered SQL statements in...
TestLink < 1.9.20 Multiple SQLi Vulnerabilities
TestLink is prone to multiple SQL injection SQLi vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
TestLink SQL Injection Vulnerability
TestLink is a set of open source software for managing the software testing process and providing statistical analysis. A SQL injection vulnerability exists in TestLink version 1.9.19. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based...
CVE-2020-8841
An issue was discovered in TestLink 1.9.19. The relationtype parameter of the lib/requirements/reqSearch.php endpoint is vulnerable to authenticated SQL Injection...
Sql injection
An issue was discovered in TestLink 1.9.19. The relationtype parameter of the lib/requirements/reqSearch.php endpoint is vulnerable to authenticated SQL Injection...
CVE-2020-8841
An issue was discovered in TestLink 1.9.19. The relationtype parameter of the lib/requirements/reqSearch.php endpoint is vulnerable to authenticated SQL Injection...