21 matches found
EUVD-2025-45150
Malicious code in surya-lapis93-sukiwir npm...
CVE-2025-45150
Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive files via supplying a crafted request...
CVE-2025-45150
CVE-2025-45150 affects LangChain-ChatGLM-Webui (commit ef829). The issue is insecure permissions that could allow an attacker to arbitrarily view and download sensitive files via a crafted request. Public references across NVD, Red Hat, CVE databases and security trackers corroborate this vulnera...
CVE-2025-45150
Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive files via supplying a crafted request...
CVE-2025-45150
Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive files via supplying a crafted request...
CVE-2025-45150
creationtimestamp| type| source ---|---|--- 2025-07-26 03:24:41+00:00| seen| https://gist.github.com/ycshao12/69a48551cc6c9cc69153d137afe9ecef...
CVE-2024-45150
creationtimestamp| type| source ---|---|--- 2024-10-09 12:18:05+00:00| seen| https://t.me/cvedetector/7444...
CVE-2024-45150
Dimension versions 4.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2024-45150 Dimension | Out-of-bounds Write (CWE-787)
Dimension versions 4.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2024-45150 Dimension | Out-of-bounds Write (CWE-787)
Dimension versions 4.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
Adobe Dimension < 4.0.4 Multiple Arbitrary code execution (APSB24-74)
The version of Adobe Dimension installed on the remote Windows host is prior to 4.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB24-74 advisory. - Dimension versions 4.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in...
Adobe Dimension < 4.0.4 Multiple Arbitrary code execution (APSB24-74) (macOS)
The version of Adobe Dimension installed on the remote macOS host is prior to 4.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB24-74 advisory. - Dimension versions 4.0.3 and earlier are affected by an out-of-bounds write vulnerability that could result in...
CVE-2023-45150
creationtimestamp| type| source ---|---|--- 2023-10-17 00:38:20+00:00| seen| https://t.me/cibsecurity/72371...
CVE-2023-45150
CVE-2023-45150 concerns Nextcloud Calendar. The Red Hat/Reddit/GHSA and CVE records describe a flaw in the Nextcloud Calendar app where missing precondition checks allow handling of arbitrarily long strings (e.g., overly long email addresses), leading to a busy, unresponsive server and potential ...
CVE-2023-45150 Inviting excessive long email addresses to a calendar event makes the Nextcloud server unresponsive
Nextcloud calendar is a calendar app for the Nextcloud server platform. Due to missing precondition checks the server was trying to validate strings of any length as email addresses even when megabytes of data were provided, eventually making the server busy and unresponsive. It is recommended th...
Moodle 3.11.x < 3.11.11 Multiple Vulnerabilities
The version of Moodle installed on the remote host is 3.9.x prior to 3.9.18, 3.11.x prior to 3.11.11 or 4.0.x prior to 4.0.5. It is, therefore, affected by multiple vulnerabilities: - An information disclosure due to a user CSRF token being unnecessarily included in the URL during the redirection...
Fedora 36 : moodle (2022-f7fdcb1820)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-f7fdcb1820 advisory. Fixes for multiple CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora: Security Advisory for moodle (FEDORA-2022-cb7084ae1c)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for moodle (FEDORA-2022-f7fdcb1820)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2022-45150
creationtimestamp| type| source ---|---|--- 2022-11-23 18:13:57+00:00| seen| https://t.me/cibsecurity/53421...