CVE-2026-10047

The Bitdefender Napoca bare-metal hypervisor contains an out-of-bounds write vulnerability in the real-mode hook handler, implemented in napoca/kernel/handler.c. The handler uses a guest-controlled SS:SP-derived offset as an index into the 1MB RealModeMemory buffer without bounds validation. With...

CVE-2025-10047

creationtimestamp| type| source ---|---|--- 2025-10-22 08:43:27+00:00| seen| Telegram/FFtZEHaJii0mDOFQU4Ym-Bjt-tRCF36hzqTFs6qYYhcEycQ...

CVE-2015-10047

A vulnerability was found in KYUUBl school-register. It has been classified as critical. This affects an unknown part of the file src/DBManager.java. The manipulation leads to sql injection. The patch is named 1cf7e01b878aee923f2b22cc2535c71a680e4c30. It is recommended to apply a patch to fix thi...

CVE-2024-10047

parisneo/lollms-webui versions v9.9 to the latest are vulnerable to a directory listing vulnerability. An attacker can list arbitrary directories on a Windows system by sending a specially crafted HTTP request to the /openfile endpoint...

CVE-2024-10047

parisneo/lollms-webui versions v9.9 to the latest are vulnerable to a directory listing vulnerability. An attacker can list arbitrary directories on a Windows system by sending a specially crafted HTTP request to the /openfile endpoint...

CVE-2024-10047 Directory Listing Vulnerability in parisneo/lollms-webui

parisneo/lollms-webui versions v9.9 to the latest are vulnerable to a directory listing vulnerability. An attacker can list arbitrary directories on a Windows system by sending a specially crafted HTTP request to the /openfile endpoint...

CVE-2024-10047

CVE-2024-10047 affects parisneo/lollms-webui, versions from v9.9 to the latest. The issue is a directory listing vulnerability exposed via the /open_file endpoint, allowing an attacker to enumerate arbitrary directories on a Windows system. The vulnerability details across connected sources confi...

Linux Distros Unpatched Vulnerability : CVE-2016-10047

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory leak in the NewXMLTree function in magick/xml-tree.c in ImageMagick before 6.9.4-7 allows remote attackers to cause a denial of service memory consumptio...

CVE-2015-10047

KYUUBl school-register contains a SQL injection vulnerability in an unknown part of src/DBManager.java (CVE-2015-10047). The issue is described as critical with high impact to confidentiality, integrity, and availability. A patch identified as commit 1cf7e01b878aee923f2b22cc2535c71a680e4c30 is re...

bumpify (>=0.0.0 <=0.5.1) potentially affected by CVE-2019-10047 via pydio (=0.4.1)

pydio PYPI version =0.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on pydio and may be impacted: - bumpify =0.0.0, =0.5.1 Source cves: CVE-2019-10047 Source advisory: OSV:GHSA-5GHG-233H-7J79...

CVE-2019-10047

A stored XSS vulnerability exists in the web application of Pydio through 8.2.2 that can be exploited by levering the file upload and file preview features of the application. An authenticated attacker can upload an HTML file containing JavaScript code and afterwards a file preview URL can be use...

CVE-2019-10047

CVE-2019-10047 is a stored XSS vulnerability in Pydio Core ≤ 8.2.2, exploitable via the file upload and file preview features of the web application. An authenticated attacker can upload an HTML file containing JavaScript and a subsequent file-preview URL can render that file, causing the script ...

CVE-2014-10047

Technical details about CVE-2014-10047 are not publicly available in the provided connected documents. The Initial Description notes an information leak when writing the Full Disk Encryption key on Qualcomm Snapdragon devices prior to 2018-04-05, but no deeper specifics are given.

CVE-2017-10047

The CVE-2017-10047 vulnerability affects Oracle Hospitality Applications’ MICROS BellaVita (Interface subcomponent) on version 2.7.x. The issue allows an unauthenticated, network-accessible attacker (via HTTP) to potentially read and modify data, including unauthorized updates, inserts, or deleti...

CVE-2016-10047

Memory leak in ImageMagick's NewXMLTree (magick/xml-tree.c) before 6.9.4-7 can be exploited by a crafted XML file to trigger denial of service via memory exhaustion. Affected: ImageMagick 6.x prior to 6.9.4-7. Mitigation: upgrade to 6.9.4-7 or later (patch available).

CVE-2016-10047

Memory leak in the NewXMLTree function in magick/xml-tree.c in ImageMagick before 6.9.4-7 allows remote attackers to cause a denial of service memory consumption via a crafted XML file...

JasPer Denial of Service Vulnerability (CNVD-2016-10047)

JasPer is a Canadian software developer Michael Adams developed an open source implementation of the JPEG-2000 codec. A denial of service vulnerability exists in JasPer, which can be exploited by an attacker to crash an application and cause a denial of service...