14 matches found
EUVD-2025-48230
Malicious code in dangerousladybugz3n npm...
TencentOS Server 4: capnproto (TSSA-2025:0183)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0183 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
CVE-2024-48230
funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php...
CVE-2024-48230
creationtimestamp| type| source ---|---|--- 2024-10-25 23:46:34+00:00| seen| https://t.me/cvedetector/8985...
CVE-2024-48230
funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php...
CVE-2024-48230
CVE-2024-48230 affects funadmin 5.0.2 in the index method of backend/controller/auth/Auth.php, where the parentField parameter enables SQL Injection. Multiple sources (NVD, Red Hat, Veracode, OSV, GHSA/GitHub advisories, CVE lists) confirm the vulnerability and its impact on data confidentiality,...
CVE-2024-48230
funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php...
CVE-2023-48230
Cap'n Proto is a data interchange format and capability-based RPC system. In versions 1.0 and 1.0.1, when using the KJ HTTP library with WebSocket compression enabled, a buffer underrun can be caused by a remote peer. The underrun always writes a constant value that is not attacker-controlled,...
CVE-2023-48230 Cap'n Proto WebSocket message can cause crash
Cap'n Proto is a data interchange format and capability-based RPC system. In versions 1.0 and 1.0.1, when using the KJ HTTP library with WebSocket compression enabled, a buffer underrun can be caused by a remote peer. The underrun always writes a constant value that is not attacker-controlled,...
CVE-2023-48230
Cap'n Proto 1.0/1.0.1 with KJ HTTP and WebSocket compression enabled is vulnerable to a remote-denial-of-service: a remote peer can trigger a buffer underrun on a heap-allocated buffer, which writes a constant 4‑byte string { 0x00, 0x00, 0xFF, 0xFF } and can crash the process. The issue is tied t...
CVE-2023-48230 Cap'n Proto WebSocket message can cause crash
Cap'n Proto is a data interchange format and capability-based RPC system. In versions 1.0 and 1.0.1, when using the KJ HTTP library with WebSocket compression enabled, a buffer underrun can be caused by a remote peer. The underrun always writes a constant value that is not attacker-controlled,...
CVE-2022-48230
creationtimestamp| type| source ---|---|--- 2023-02-27 20:31:57+00:00| seen| https://t.me/cibsecurity/58995...
CVE-2022-48230
CVE-2022-48230 affects Huawei BiSheng-WNM FW 3.0.0.325. The issue is a misinterpretation of input vulnerability that could be exploited remotely to cause a denial of service. The CVE entry has a High impact (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) with a network attack vector and no confidentiality/...
CVE-2022-48230
There is a misinterpretation of input vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation could lead to DoS...