CVE-2026-2077

A security vulnerability has been detected in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. Affected by this issue is the function addRole/updateRole/deleteRole of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\RoleController.java of the component Role...

CVE-2026-2077 yeqifu warehouse Role Management RoleController.java deleteRole improper authorization

A security vulnerability has been detected in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. Affected by this issue is the function addRole/updateRole/deleteRole of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\RoleController.java of the component Role...

EUVD-2026-2077

Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox 147 and Firefox ESR 140.7...

CVE-2019-2077

In libxaac there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-114745929...

CVE-2024-2077

A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file index.php. The manipulation of the argument categoryid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2023-2077

A vulnerability, which was classified as problematic, has been found in Campcodes Online Traffic Offense Management System 1.0. This issue affects some unknown processing of the file /admin/offenses/viewdetails.php. The manipulation of the argument id leads to cross site scripting. The attack may...

CVE-2025-2077 Simple Amazon Affiliate <= 1.0.9 - Reflected Cross-Site Scripting

The Simple Amazon Affiliate plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'msg' parameter in all versions up to, and including, 1.0.9 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary...

Google Exposes GLASSBRIDGE: A Pro-China Influence Network of Fake News Sites

Government agencies and non-governmental organizations in the United States have become the target of a nascent China state threat actor known as Storm-2077. The adversary, believed to be active since at least January 2024, has also conducted cyber attacks against the Defense Industrial Base DIB,...

openSUSE Security Advisory (SUSE-SU-2024:2077-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2024:2077-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: container-tools:rhel8 security and bug fix update

An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Security team has rated the vulnerability impact of the fixed issues as Important. The container-tools module contains tools for working with containers, notably podman,...

RHEL 8 : container-tools:rhel8 (RHSA-2024:2077)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2077 advisory. The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: golang:...

CVE-2024-2077

creationtimestamp| type| source ---|---|--- 2024-03-01 20:27:17+00:00| seen| https://t.me/ctinow/197965 2024-03-01 20:31:23+00:00| seen| https://t.me/ctinow/197971...

CVE-2024-2077 SourceCodester Simple Online Bidding System index.php sql injection

A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file index.php. The manipulation of the argument categoryid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2024-2077

The CVE-2024-2077 entry concerns SourceCodester Simple Online Bidding System 1.0. Affected component: index.php, where manipulating the category_id parameter enables SQL injection. Impact stated as high confidentiality, integrity, and availability risk, with remote exploitation possible and explo...

CVE-2024-2077 SourceCodester Simple Online Bidding System index.php sql injection

A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file index.php. The manipulation of the argument categoryid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

Oracle Linux 7 : ntp (ELSA-2019-2077)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-2077 advisory. - fix CVE-2016-7429 patch to restore default ttl configuration 1550637 - fix buffer overflow in parsing of address in ntpq and ntpdc CVE-2018-12327 Tenable has...

Amazon Linux 2 : mod_auth_mellon (ALAS-2023-2077)

The version of modauthmellon installed on the remote host is prior to 0.14.0-9. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2077 advisory. A flaw was found in modauthmellon where it does not sanitize logout URLs properly. This issue could be used by an attacker t...

CVE-2077-00666

creationtimestamp| type| source ---|---|--- 2023-05-19 11:22:47+00:00| published-proof-of-concept| https://t.me/cultofwire/1038...

Oracle Linux 7 : libwebp (ELSA-2023-2077)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-2077 advisory. 0.3.0-11 - Added fix for mzbz1819244 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus ha...