EUVD-2008-0556

Malware in sbrugna...

a-texam (=1.1.0), aait (>=1.0.4 <=1.0.5) +1069 more potentially affected by CVE-2019-9423 via opencv-contrib-python (>=3.4.11.45 <=4.1.1.26)

opencv-contrib-python PYPI version =3.4.11.45, =1.0.4, =1.11.4, =0.5.0, =0.1.0, =24.3.2, =1.0.0, =0.3.0, =0.1.0, =0.1.0, =1.0.0, =0.0.1, =0.0.3, =0.0.9 and more Source cves: CVE-2019-9423 Source advisory: OSV:GHSA-8849-5H85-98QW...

01os (>=0.0.3 <=0.0.14), 102218077-topsis (=0.0.1) +9932 more potentially affected by CVE-2019-16249 via opencv-python (>=3.4.10.35 <=4.1.1.26)

opencv-python PYPI version =3.4.10.35, =0.0.3, =0.0.1, =0.1.0, =0.0.2, =2.13.0, =0.1.0, =0.1.0, =0.10.0, =0.13.0 - a-cv-sift-detection =0.10.0 - a-cv2-calculate-difference =0.10.0 and more Source cves: CVE-2019-16249 Source advisory: OSV:GHSA-X3RM-644H-67M8...

Sql injection

SQL injection vulnerability in admin/utilitiesConfigHelp.asp in CandyPress CP 4.1.1.26, and other 4.x and 3.x versions, allows remote attackers to execute arbitrary SQL commands via the helpfield parameter...

CVE-2008-0736

CVE-2008-0736 affects CandyPress (CP) 4.1.1.26 and possibly other 4.x and 3.x versions. The vulnerability is in admin/SA_shipFedExMeter.asp, where a crafted FedExAccount parameter value enables a path traversal, allowing remote attackers to obtain the server path. Impact is partial confidentialit...

CandyPress eCommerce suite 4.1.1.26 - Multiple Vulnerabilities

WwW.BugReport.ir AmnPardaz Security Research & Penetration Testing Group Title: CandyPress eCommerce suite Vendor: http://www.candypress.com/ Bugs: SQL Injection + XSS + Path Disclosure in CandyPress Vulnerable Version: 4.1.1.26 Exploit: Available Fix Available: Yes!, Update to 4.1.1.27...