EUVD-2025-33546

Copilot Spoofing Vulnerability...

Linux Distros Unpatched Vulnerability : CVE-2023-33546

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on...

CVE-2024-33546

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone allows SQL Injection.This issue affects WZone: from n/a through 14.0.10...

CVE-2024-33546 WordPress WZone plugin <= 14.0.10 - Arbitrary SQL Update Execution vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone allows SQL Injection.This issue affects WZone: from n/a through 14.0.10...

CVE-2024-33546 WordPress WZone plugin <= 14.0.10 - Arbitrary SQL Update Execution vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone allows SQL Injection.This issue affects WZone: from n/a through 14.0.10...

CVE-2024-33546

CVE-2024-33546 is an unauthenticated SQL Injection in the WooCommerce Amazon Affiliates/WooZone plugin for WordPress, affecting WZone up to version 14.0.10. The CVSS v3.1 base vector indicates network access (AV:N) with low attack complexity (AC:L) and requires low privileges (PR:L) with no user ...

WordPress WZone Plugin <= 14.0.33 is vulnerable to SQL Injection

Software WZone Type Plugin Vulnerable versions = 14.0.33 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-33546 Patch priority High CVSS severity High 9.6 Developer Claim ownership PSID 44537a1aade6 Credits Rafie Muhammad Patchstack Required privilege Subscriber...

openSUSE: Security Advisory for janino (SUSE-SU-2023:3385-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 15 Security Update : janino (SUSE-SU-2023:3385-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2023:3385-1 advisory. - janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs o...

Medium: janino

Issue Overview: janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. CVE-2023-3354...

SUSE CVE-2023-33546

Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. NOTE: this is disputed by...

CVE-2023-33546

creationtimestamp| type| source ---|---|--- 2023-06-01 16:30:15+00:00| seen| https://t.me/cibsecurity/64849...

CVE-2023-33546

Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. NOTE: this is disputed by...

CVE-2023-33546

Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. NOTE: this is disputed by...

CVE-2023-33546

CVE-2023-33546 affects Janino 3.1.9 and earlier, where the expression evaluator.guess parameter name method can trigger a denial-of-service via stack overflow if parsing user-supplied input. Documented impact is a DoS condition (parser crash) with local attack context; vendor/discussion notes tha...

CVE-2023-33546

Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. NOTE: this is disputed by...

CVE-2023-33546

Janino 3.1.9 and earlier are subject to denial of service DOS attacks when using the expression evaluator.guess parameter name method. If the parser runs on user-supplied input, an attacker could supply content that causes the parser to crash due to a stack overflow. NOTE: this is disputed by...

CVE-2021-33546

creationtimestamp| type| source ---|---|--- 2021-09-13 22:14:58+00:00| seen| https://t.me/cibsecurity/28737...

CVE-2021-33546

CVE-2021-33546 is a stack-based buffer overflow in the name parameter that enables remote code execution on UDP Technology firmware used in Geutebrück IP cameras. Affected products per sources include Geutebrück G-Cam E2 (G-CAM) and G-Code encoders with specific firmwares: G-CAM versions 1.12.0.2...

CVE-2021-33546 UDP Technology/Geutebrück camera devices: Buffer overflow in name parameter leading to RCE

Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the name parameter, which may allow an attacker to remotely execute arbitrary code...