CVE-2026-1432

SQL injection vulnerability in the Buroweb platform version 2505.0.12, specifically in the 'tablon' component. This vulnerability is present in several parameters that do not correctly sanitize user input in the endpoint '/sta/CarpetaPublic/doEvent?APPCODE=STACODE=TABLON'. Exploiting this...

CVE-2026-1432

creationtimestamp| type| source ---|---|--- 2026-02-03 13:16:27+00:00| seen| Telegram/fpMcrY2RALMfsN1onUqQsHu7uTJCJuSmLnazyi9cvEQogc...

CVE-2024-1432

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in DeepFaceLab pretrained DF.wf.288res.384.92.72.22 and classified as problematic. This issue affects the function applyxseg of the file main.py. The manipulation leads to deserialization. The attack may be initiated remotely. The complexity of ...

CVE-2019-1432

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1411...

CVE-2008-1432

Cross-site scripting XSS vulnerability in SolutionSearch.do in ManageEngine SupportCenter Plus 7.0.0 allows remote attackers to inject arbitrary web script or HTML via the searchText parameter, a related issue to CVE-2008-1299. NOTE: the provenance of this information is unknown; the details are...

CVE-2025-1432

creationtimestamp| type| source ---|---|--- 2025-03-18 04:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-154/ 2025-04-24 21:07:05+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13341 2026-01-23 07:13:13+00:00| seen|...

CVE-2025-1432

CVE-2025-1432 affects Autodesk AutoCAD via parsing of a malicious 3DM file, triggering a Use-After-Free in the current process. Impact per sources: crash, read sensitive data, or arbitrary code execution. Affected component: 3DM file parsing in AutoCAD; root cause: Use-After-Free. CVSSv3.1 base s...

CVE-2022-1432

Cross-site Scripting XSS - Generic in GitHub repository octoprint/octoprint prior to 1.8.0...

CVE-2019-1432

creationtimestamp| type| source ---|---|--- 2024-02-13 07:26:20+00:00| seen| https://t.me/ctinow/183632...

CVE-2024-1432

creationtimestamp| type| source ---|---|--- 2024-02-11 04:26:22+00:00| seen| https://t.me/ctinow/182683 2024-02-11 10:06:46+00:00| seen| Telegram/fNJVLGlqnzZyGQXr2u1tPmzWPPuAEUVcItTLZNsil0khWa- 2024-03-03 13:11:32+00:00| published-proof-of-concept| https://t.me/ctinow/198712...

CVE-2024-1432

CVE-2024-1432 affects the DeepFaceLab pretrained DF.wf.288res.384.92.72.22. The vulnerability is in the function to apply_xseg inside main.py, where deserialization leads to a likely remote attack. The exploitation is described as possible, with high attack complexity, and public disclosures exis...

CVE-2024-1432 DeepFaceLab main.py apply_xseg deserialization

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in DeepFaceLab pretrained DF.wf.288res.384.92.72.22 and classified as problematic. This issue affects the function applyxseg of the file main.py. The manipulation leads to deserialization. The attack may be initiated remotely. The complexity of ...

CVE-2023-1432

creationtimestamp| type| source ---|---|--- 2023-03-16 15:31:03+00:00| seen| https://t.me/cibsecurity/60135...

CVE-2023-1432

SourceCodester Online Food Ordering System 2.0 has a vulnerability in the POST Request Handler, specifically the file path /fos/admin/ajax.php?action=save_settings. The issue is an improper access control in this endpoint, which could allow a remote attacker to exploit it without authentication. ...

SUSE CVE-2011-1432

The STARTTLS implementation in SCO SCOoffice Server does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection"...

CVE-2022-1432

creationtimestamp| type| source ---|---|--- 2022-05-18 18:28:34+00:00| seen| https://t.me/cibsecurity/42909...

CVE-2022-1432

CVE-2022-1432 describes a Cross-site Scripting (XSS) vulnerability in OctoPrint prior to 1.8.0. Concrete details from connected sources indicate the XSS stems from insufficient filtering/escaping in the webcam stream test functionality, enabling injection of JavaScript in the client context. The ...

CVE-2022-1432 Cross-site Scripting (XSS) - Generic in octoprint/octoprint

Cross-site Scripting XSS - Generic in GitHub repository octoprint/octoprint prior to 1.8.0...

Mageia: Security Advisory (MGASA-2013-0197)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2010-1432

Joomla! Core contains an information disclosure vulnerability affecting Joomla! Core 1.5.x, specifically versions 1.5.0–1.5.15. The issue allows an attacker to obtain sensitive information that could aid in further exploitation. Exploitation details, affected vectors, and remediation steps are no...