Microsoft Windows 缓冲区错误漏洞

Microsoft Windows is an operating system used by personal devices by the American company Microsoft. Microsoft Windows has a buffer error vulnerability. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions are affected: Windows Server 2022 Server...

Microsoft Windows Resilient File System 缓冲区错误漏洞

Microsoft Windows Resilient File System ReFS is an elastic file system developed by Microsoft Corporation. The Microsoft Windows Resilient File System ReFS contains a buffer error vulnerability. Attackers can exploit this vulnerability to gain elevated privileges. The following products and...

Microsoft Windows Routing and Remote Access Service 输入验证错误漏洞

The Microsoft Windows Routing and Remote Access Service is a network service provided by Microsoft that enables network routing, virtual private networks VPNs, and dial-up connections. There is an input validation vulnerability in the Microsoft Windows Routing and Remote Access Service. Attackers...

Microsoft Windows Kerberos 竞争条件问题漏洞

Microsoft Windows Kerberos is a software developed by Microsoft for authentication in network clusters. As a network authentication protocol, its design goal is to provide robust authentication services for client/server applications through a key system. There are vulnerabilities related to...

Microsoft多款产品 资源管理错误漏洞

Microsoft Windows 10, among others, are products of the American company Microsoft. Microsoft Windows 10 is a desktop operating system. Microsoft Windows Server 2012 is also a desktop operating system. Microsoft Windows 11 is a set of personal computer operating systems. Several of Microsoft’s...

Microsoft Windows Routing and Remote Access Service 输入验证错误漏洞

The Microsoft Windows Routing and Remote Access Service is a network service provided by Microsoft that enables features such as network routing, virtual private networks VPNs, and dial-up connections. There is an input validation vulnerability in the Microsoft Windows Routing and Remote Access...

KB5078775: Windows Server 2012 Security Update (March 2026)

The remote Windows host is missing security update 5078775. It is, therefore, affected by multiple vulnerabilities - Use after free in Windows Print Spooler Components allows an authorized attacker to execute code over a network. CVE-2026-23669 - Use after free in Windows Win32K allows an...

Microsoft Windows Ancillary Function Driver for WinSock 安全漏洞

The Microsoft Windows Ancillary Function Driver for WinSock is a supplementary function driver for Winsock developed by Microsoft Corporation. There are security vulnerabilities associated with the Microsoft Windows Ancillary Function Driver for WinSock. Attackers can exploit these vulnerabilitie...

CVE-2012-5239

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-3548. Reason: This candidate is a reservation duplicate of CVE-2012-3548. Notes: All CVE users should reference CVE-2012-3548 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental...

February 10, 2026—KB5075971 (Monthly Rollup)

February 10, 2026—KB5075971 Monthly Rollup Important The installation of this Extended Security Update ESU might fail when you try to install it on an Azure Arc-enabled device that is running Windows Server 2012. For a successful installation, please make sure all Subset of endpoints for ESU only...

Teknolist Okulistik 代码问题漏洞

Teknolist Okulistik is an online education platform owned by the Turkish company Teknolist. Versions of Teknolist Okulistik from 2012/02/20 onwards have code vulnerabilities related to server-side request forgery, which may lead to such attacks...

KB5075970: Windows Server 2012 R2 Security Update (February 2026)

The remote Windows host is missing security update 5075970. It is, therefore, affected by multiple vulnerabilities - Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network. CVE-2026-21513 - Heap-based buffer overflow in Microso...

KB5075971: Windows Server 2012 Security Update (February 2026)

The remote Windows host is missing security update 5075971. It is, therefore, affected by multiple vulnerabilities - Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network. CVE-2026-21513 - Heap-based buffer overflow in Microso...

CVE-2020-37108

PhpIX 2012 Professional contains a SQL injection vulnerability in the 'id' parameter of productdetail.php that allows remote attackers to manipulate database queries. Attackers can inject malicious SQL code through the 'id' parameter to potentially extract or modify database information...

CVE-2020-37108 PhpIX 2012 Professional - 'id' SQL Injection

PhpIX 2012 Professional contains a SQL injection vulnerability in the 'id' parameter of productdetail.php that allows remote attackers to manipulate database queries. Attackers can inject malicious SQL code through the 'id' parameter to potentially extract or modify database information...

CVE-2020-37108

PhpIX 2012 Professional contains a SQL injection vulnerability in the 'id' parameter of productdetail.php that allows remote attackers to manipulate database queries. Attackers can inject malicious SQL code through the 'id' parameter to potentially extract or modify database information...

CVE-2020-37108

The CVE-2020-37108 issue affects PhpIX 2012 Professional and is caused by an SQL injection in the id parameter of product_detail.php, enabling remote manipulation of database queries. Affected component: product_detail.php (id parameter). Underlying cause: improper handling/sanitization of user i...

PT-2026-5854

PhpIX 2012 Professional contains a SQL injection vulnerability in the 'id' parameter of product detail.php that allows remote attackers to manipulate database queries. Attackers can inject malicious SQL code through the 'id' parameter to potentially extract or modify database information...

Azure Linux 3.0 Security Update: accountsservice (CVE-2012-6655)

The version of accountsservice installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2012-6655 advisory. - An issue exists AccountService 0.6.37 in the userchangepasswordauthorizedcb function in user.c which...

MiracleLinux 4 : xorg-x11-server-1.7.7-29.2.0.1.AXS4 (AXSA:2012-01:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-01:01 advisory. The X.Org X11 X server Security issues fixed with this release: CVE-2010-4818 CVE-2010-4819 No information available at the time of writing, please...