10 matches found
SUSE CVE-2026-33337
Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when deserializing a slice packet, the xdrdatum function does not validate that a cstring length conforms to the slice descriptor bounds, allowing a cstring longer than the allocated...
CVE-2026-33337
creationtimestamp| type| source ---|---|--- 2026-04-17 19:20:51+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mjpngcrnnp2l 2026-04-17 21:22:46+00:00| seen| Telegram/o-uTgZiWLI4DGr-3Qx2v6r5S9u58WJIjtqdTFR62kB0PIWs...
CVE-2026-33337
Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when deserializing a slice packet, the xdrdatum function does not validate that a cstring length conforms to the slice descriptor bounds, allowing a cstring longer than the allocated...
CVE-2026-33337 Firebird has a buffer overflow when parsing corrupted slice packets
Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when deserializing a slice packet, the xdrdatum function does not validate that a cstring length conforms to the slice descriptor bounds, allowing a cstring longer than the allocated...
PT-2026-33337
Name of the Vulnerable Software and Affected Versions SourceCodester Payroll Management and Information System version 1.0 Description SQL Injection exists in the file '/payroll/view employee.php'. Recommendations Update SourceCodester Payroll Management and Information System to a version newer...
CVE-2021-33337
Cross-site scripting XSS vulnerability in the Document Library module's add document menu in Liferay Portal 7.3.0 through 7.3.4, and Liferay DXP 7.1 before fix pack 20, and 7.2 before fix pack 9, allows remote attackers to inject arbitrary web script or HTML via the...
CVE-2021-33337
creationtimestamp| type| source ---|---|--- 2021-08-04 19:24:12+00:00| seen| https://t.me/cibsecurity/26801...
CVE-2021-33337
Cross-site scripting XSS vulnerability in the Document Library module's add document menu in Liferay Portal 7.3.0 through 7.3.4, and Liferay DXP 7.1 before fix pack 20, and 7.2 before fix pack 9, allows remote attackers to inject arbitrary web script or HTML via the...
CVE-2021-33337
Cross-site scripting XSS vulnerability in the Document Library module's add document menu in Liferay Portal 7.3.0 through 7.3.4, and Liferay DXP 7.1 before fix pack 20, and 7.2 before fix pack 9, allows remote attackers to inject arbitrary web script or HTML via the...
CVE-2021-33337
CVE-2021-33337 is an XSS vulnerability in the Liferay Portal/DXP Document Library add document menu. Affected products: Liferay Portal 7.3.0–7.3.4 and Liferay DXP 7.1 (before fix pack 20) and 7.2 (before fix pack 9). The issue allows remote attackers to inject arbitrary HTML/script via the parame...