CVE-2026-42383

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YITH YITH WooCommerce Product Add-Ons allows Blind SQL Injection. This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.29.0...

CVE-2026-42383

creationtimestamp| type| source ---|---|--- 2026-05-20 15:08:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmc6q5qqsx2r...

CVE-2026-42383

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YITH YITH WooCommerce Product Add-Ons allows Blind SQL Injection. This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.29.0...

EUVD-2025-42383

Malicious code in putri-nasicampur78-ruro npm...

Linux Distros Unpatched Vulnerability : CVE-2021-42383

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function...

Siemens SIMATIC S7-1500 TM MFP BIOS Use After Free (CVE-2021-42383)

A use-after-free in awk leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

Cesanta Mongoose Web Server <= 7.14 Multiple Vulnerabilities

Cesanta Mongoose Web Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2024-42383

creationtimestamp| type| source ---|---|--- 2024-11-18 09:31:45+00:00| seen| https://infosec.exchange/users/cve/statuses/113503260134233857 2024-11-18 12:22:08+00:00| seen| https://t.me/cvedetector/11317...

CVE-2024-42383

The CVE-2024-42383 entry concerns Cesanta Mongoose Web Server v7.14. The vulnerability is described as an Out-of-range Pointer Offset that lets an attacker write a NULL byte beyond the memory space allocated for the hostname field. NVD lists CVSS v3.1 base score 9.8 (CRITICAL) with network attack...

CVE-2024-42383 Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows to write a NULL byte value beyond the memory space dedicated for the hostname field...

CVE-2024-42383 Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows to write a NULL byte value beyond the memory space dedicated for the hostname field...

BELL-CVE-2021-42383 CVE-2021-42383 does not affect BellSoft software

Bulletin has no description...

CVE-2022-42383

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2022-42383

The CVE-2022-42383 issue affects PDF-XChange Editor and stems from a flaw in parsing U3D files. The vulnerability allows remote disclosure of sensitive information by triggering a read past the end of an allocated buffer when processing crafted U3D data, with user interaction required (visiting a...

SUSE: Security Advisory (SUSE-SU-2022:4253-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1287)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for busybox (FEDORA-2021-5a95823596)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for busybox (FEDORA-2021-c52c0fe490)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OESA-2021-1449 busybox security update

BusyBox combines tiny versions of many common UNIX utilities into a single small executable. It provides replacements for most of the utilities you usually find in GNU fileutils, shellutils, etc. It provides a fairly complete environment for any small or embedded system. Security Fixes: A...

Updated busybox packages fix security vulnerability

A NULL pointer dereference in Busybox's hush applet leads to denial of service when processing a crafted shell command, due to missing validation after a \x03 delimiter character. This may be used for DoS under very rare conditions of filtered command input. CVE-2021-42376 An attacker-controlled...