CVE-2023-22308

An integer underflow vulnerability exists in the vpnserver OvsProcessData functionality of SoftEther VPN 5.01.9674 and 5.02. A specially crafted network packet can lead to denial of service. An attacker can send a malicious packet to trigger this vulnerability...

CVE-2023-25774

CVE-2023-25774: Talos reports a denial-of-service in SoftEther VPN 5.01.9674 and 5.02 due to a vulnerability in vpnserver ConnectionAccept() that can exhaust resources by spawning many threads. Root cause appears to be synchronization/locking leading to long delays and eventual server crash under...

CVE-2023-25774

A denial-of-service vulnerability exists in the vpnserver ConnectionAccept functionality of SoftEther VPN 5.02. A set of specially crafted network connections can lead to denial of service. An attacker can send a sequence of malicious packets to trigger this vulnerability...

SoftEther VPN Buffer Error Vulnerability

SoftEther VPN is an open source, cross-platform, multi-protocol VPN Virtual Private Network application. A security vulnerability exists in SoftEther VPN versions 4.41-9782-beta, 5.01.9674, and 5.02, which stems from a denial-of-service vulnerability in the WpcParsePacket function, which can be...

WordPress Social proof testimonials and reviews by Repuso Plugin <= 5.01 is vulnerable to Cross Site Request Forgery (CSRF)

Software Social proof testimonials and reviews by Repuso Type Plugin Vulnerable versions = 5.01 Fixed in 5.02 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-45048 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID f56e0249a9...

CVE-2009-0948

Multiple buffer overflows in the 1 cdfreadsat, 2 cdfreadlongsectorchain, and 3 cdfreadssat function in file before 5.02...

CVE-2009-0947

Multiple integer overflows in the 1 cdfreadpropertyinfo and 2 cdfreadsat functions in file before 5.02...

CVE-2009-0948

Multiple buffer overflows in the 1 cdfreadsat, 2 cdfreadlongsectorchain, and 3 cdfreadssat function in file before 5.02...

Integer overflow

Multiple integer overflows in the 1 cdfreadpropertyinfo and 2 cdfreadsat functions in file before 5.02...

CVE-2009-0948

Multiple buffer overflows in the 1 cdfreadsat, 2 cdfreadlongsectorchain, and 3 cdfreadssat function in file before 5.02...

CVE-2009-0948

Multiple buffer overflows in the 1 cdfreadsat, 2 cdfreadlongsectorchain, and 3 cdfreadssat function in file before 5.02...

CVE-2009-0947

Multiple integer overflows in the 1 cdfreadpropertyinfo and 2 cdfreadsat functions in file before 5.02...

CVE-2009-0947

Multiple integer overflows in the 1 cdfreadpropertyinfo and 2 cdfreadsat functions in file before 5.02...

phpMyAdmin 4.9.0 < 4.9.5 / 5.0.0 < 5.0.2 Multiple Vulnerabilities (PMASA-2020-2, PMASA-2020-3, PMASA-2020-4)

According to its self-reported version, the phpMyAdmin application hosted on the remote web server is 4.9.x prior to 4.9.5 or 5.0.x prior to 5.0.2. It is, therefore, affected by multiple vulnerabilities. - In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was foun...

CVE-2018-1603

IBM Rational Quality Manager is affected by CVE-2018-1603: cross-site scripting in RQM 5.0–5.02 and 6.0–6.0.6, enabling arbitrary JavaScript in the Web UI and potentially credential disclosure in a trusted session. The CVSS v3 base score is 5.4 (Medium), with network access, low attack complexity...

CVE-2018-1439

IBM Rational Quality Manager RQM 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

Cross site scripting

IBM Rational Quality Manager RQM 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

CVE-2018-1605

Summary : CVE-2018-1605 affects IBM Rational Quality Manager (RQM) 5.0–5.02 and 6.0–6.0.6, introducing a cross-site scripting (XSS) vulnerability in the Web UI that can lead to credentials disclosure within a trusted session. The root cause is input handling in the Web UI that allows embedding of...

CVE-2018-1601

IBM Rational Quality Manager RQM 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

CVE-2018-1403

CVE-2018-1403 affects IBM Rational Quality Manager (RQM) versions 5.0–5.0.2 and 6.0–6.0.6. The issue is a cross-site scripting flaw in the Web UI that lets an attacker embed arbitrary JavaScript, potentially leading to credentials disclosure in a trusted session. Root cause: improper sanitization...