CVE-2025-12978

Fluent Bit inhttp, insplunk, and inelasticsearch input plugins contain a flaw in the tagkey validation logic that fails to enforce exact key-length matching. This allows crafted inputs where a tag prefix is incorrectly treated as a full match. A remote attacker with authenticated or exposed acces...

CVE-2025-12978

creationtimestamp| type| source ---|---|--- 2025-11-25 12:05:31+00:00| seen| https://gist.github.com/Darkcrai86/9c78936ffd5178a4049061473f0a3a90...

CVE-2025-12978

Fluent Bit inhttp, insplunk, and inelasticsearch input plugins contain a flaw in the tagkey validation logic that fails to enforce exact key-length matching. This allows crafted inputs where a tag prefix is incorrectly treated as a full match. A remote attacker with authenticated or exposed acces...

CVE-2024-12978

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as critical. This vulnerability affects the function addreq of the file /parse/alledits.php. The manipulation of the argument jid/limit leads to sql injection. The attack can be initiated remotely. The exploit has...

CVE-2024-12978

creationtimestamp| type| source ---|---|--- 2024-12-27 04:15:33+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3leb4vfytxw2k 2024-12-27 05:57:08+00:00| seen| https://t.me/cvedetector/13708...

CVE-2024-12978

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as critical. This vulnerability affects the function addreq of the file /parse/alledits.php. The manipulation of the argument jid/limit leads to sql injection. The attack can be initiated remotely. The exploit has...

CVE-2024-12978 code-projects Job Recruitment _all_edits.php add_req sql injection

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as critical. This vulnerability affects the function addreq of the file /parse/alledits.php. The manipulation of the argument jid/limit leads to sql injection. The attack can be initiated remotely. The exploit has...

CVE-2024-12978 code-projects Job Recruitment _all_edits.php add_req sql injection

A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as critical. This vulnerability affects the function addreq of the file /parse/alledits.php. The manipulation of the argument jid/limit leads to sql injection. The attack can be initiated remotely. The exploit has...

CVE-2024-12978

Code-Projects Job Recruitment 1.0 contains a SQL injection in the add_req function of /_parse/_all_edits.php caused by unsafely handling the jid/limit parameter. The vulnerability is exploitable remotely and has been publicly disclosed. Connected sources also suggest immediate mitigations: tempor...

Important: ImageMagick

Issue Overview: Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service segmentation fault or possibly execute arbitrary code via vectors involving the offset variable. CVE-2016-5841 ImageMagick 7.0.7-12 Q16, a CPU exhaustion...

SUSE CVE-2017-12978

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user...

CVE-2020-12978

CVE-2020-12978 is rejected/not used as an active vulnerability entry.

CVE-2020-12978

...

Huawei EulerOS: Security Advisory for ImageMagick (EulerOS-SA-2020-1806)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2019:2010-1)

This update for ImageMagick fixes the following issues : CVE-2019-13301: Fixed a memory leak in AcquireMagickMemory bsc1140554. CVE-2019-13310: Fixed a memory leak at AcquireMagickMemory because of an error in MagickWand/mogrify.c bsc1140501. CVE-2019-13311: Fixed a memory leak at...

ImageMagick < 7.0.8-35 Multiple vulnerabilities

The version of ImageMagick installed on the remote Windows host is prior to 7.0.8-35. It is, therefore, affected by multiple vulnerabilities: - A 'use of uninitialized value' vulnerability in the WriteJP2Image function in coders/jp2.c. CVE-2019-12977 - A 'use of uninitialized value' vulnerability...

DEBIAN-CVE-2019-12978

ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the ReadPANGOImage function in coders/pango.c...

CVE-2019-12978

CVE-2019-12978 is rejected/not used; this CVE entry does not represent an active vulnerability.

Amazon Linux AMI : cacti (ALAS-2017-904)

A cross-site scripting vulnerability exists in Cacti in the method parameter in spikekill.php. CVE-2017-12927 The lib/html.php script in Cacti has a XSS vulnerability via the title field of an external link added by an authenticated user. CVE-2017-12978 C Tenable Network Security, Inc. The...

Medium: cacti

Issue Overview: A cross-site scripting vulnerability exists in Cacti in the method parameter in spikekill.php. CVE-2017-12927 The lib/html.php script in Cacti has a XSS vulnerability via the title field of an external link added by an authenticated user. CVE-2017-12978 Affected Packages: cacti...