CVE-2026-2057 SourceCodester Medical Center Portal Management System login.php sql injection

A vulnerability was detected in SourceCodester Medical Center Portal Management System 1.0. This affects an unknown function of the file /login.php. The manipulation of the argument User results in sql injection. The attack can be executed remotely. The exploit is now public and may be used...

ESVA-Project E-Mail Security Virtual Appliance 安全漏洞

ESVA-Project E-Mail Security Virtual Appliance is an email security virtual appliance from ESVA-Project. A security vulnerability exists in the E-Mail Security Virtual Appliance, version ESVA2057, which stems from a learn-msg.cgi script that is not cleaned of user input and could lead to command...

CVE-2011-2057

The cat6000-dot1x component in Cisco IOS 12.2 before 12.233SXI7 does not properly handle 1 a loop between a dot1x enabled port and an open-authentication dot1x enabled port and 2 a loop between a dot1x enabled port and a non-dot1x port, which allows remote attackers to cause a denial of service...

CVE-2009-2057

Microsoft Internet Explorer before 8 uses the HTTP Host header to determine the context of a document provided in a 1 4xx or 2 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL...

Alibaba Cloud Linux 3 : 0057: libtiff (ALINUX3-SA-2024:0057)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0057 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-2056: Divide By Zero error in...

CVE-2025-2057

A vulnerability, which was classified as critical, was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. Affected is an unknown function of the file /admin/about-us.php. The manipulation of the argument pagedes leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2025-2057

creationtimestamp| type| source ---|---|--- 2025-03-07 01:34:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6781 2025-03-07 03:00:38+00:00| published-proof-of-concept| Telegram/2gudYF93fIPfnvmC1srY7xMd6qp4FdxgkMbUWvsqUQhzjak 2025-03-07 04:03:52+00:00| seen|...

CVE-2025-2057

CVE-2025-2057 concerns a SQL injection in the PHPGurukul Emergency Ambulance Hiring Portal 1.0. The vulnerability affects an unknown function in the file /admin/about-us.php, where the pagedes parameter is mishandled, enabling an attacker to inject SQL statements. The issue is exploitable remotel...

CVE-2025-2057 PHPGurukul Emergency Ambulance Hiring Portal about-us.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. Affected is an unknown function of the file /admin/about-us.php. The manipulation of the argument pagedes leads to sql injection. It is possible to launch the attack remotely. The...

Linux Distros Unpatched Vulnerability : CVE-2022-2057

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from...

Linux Distros Unpatched Vulnerability : CVE-2010-2057

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - shared/util/StateUtils.java in Apache MyFaces 1.1.x before 1.1.8, 1.2.x before 1.2.9, and 2.0.x before 2.0.1 uses an encrypted View State without a Message...

CVE-2025-20642

In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146;...

CVE-2025-20642

In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146;...

CVE-2025-20642

In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146;...

openSUSE: Security Advisory for tiff (SUSE-SU-2022:2647-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-2057

creationtimestamp| type| source ---|---|--- 2024-03-01 13:21:57+00:00| seen| https://t.me/ctinow/197592 2024-03-01 13:26:32+00:00| seen| https://t.me/ctinow/197596 2024-03-13 17:41:59+00:00| seen| https://t.me/ctinow/206952...

a-data-processing (=0.0.1), a-mailx (=0.1.0) +2000 more potentially affected by CVE-2024-2057 via langchain-community (>=0.0.1 <=0.4.1)

langchain-community PYPI version =0.0.1, =0.1.0, =0.1.0b1, =0.1.0, =0.1.0, =0.1.0, =4.8.2, =0.1.3, =0.1.0, =0.1.0, =0.1.0, =3.2.0, =4.2.0 and more Source cves: CVE-2024-2057 Source advisory: OSV:PYSEC-2024-278...

opik (>=0.1.1 <=0.2.2) potentially affected by CVE-2024-2057 via langchain-community (=1.0.0a1)

langchain-community PYPI version =1.0.0a1 is affected by a known vulnerability. The following packages have a transitive dependency on langchain-community and may be impacted: - opik =0.1.1, =0.2.2 Source cves: CVE-2024-2057 Source advisory: OSV:PYSEC-2024-278...

CVE-2024-2057

CVE-2024-2057 affects LangChain langchain_community 0.0.26, specifically the TFIDFRetriever’s load_local in libs/community/langchain_community/retrievers/tfidf.py. The vulnerability enables server-side request forgery (SSRF) and is exploitable remotely; public disclosure exists. Upgrading to 0.0....

CentOS 9 : libtiff-4.4.0-5.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the libtiff-4.4.0-5.el9 build changelog. - Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that...