@archbase/admin (>=4.0.0 <=4.0.1), @archbase/advanced (>=4.0.0 <=4.0.1) +10 more potentially affected by unknown CVE via @pdfme/schemas (>=5.5.10 <=5.5.8)

@pdfme/schemas NPM version =5.5.10, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =1.0.11, =0.20.0, =1.0.0, =0.31.0-EXPO-315-Marcelo-Tinelli.4, =0.0.1, =0.0.4 Source cves: unknown CVE Source advisory: SNYK:JS-PDFMESCHEMAS-15746949...

Craft CMS 4.x < 4.13.8 / 5.x < 5.5.8 RCE (GHSA-x684-96hh-833x)

The version of Craft CMS installed on the remote host is 4.x prior to 4.13.8 or 5.x prior to 5.5.8. It is, therefore, affected by a remote code execution vulnerability: - A remote code execution RCE vulnerability affects Craft 4 and 5 installs where your security key has already been compromised...

Craft CMS 代码注入漏洞

Craft CMS is an open source content management system CMS from Craft CMS. A code injection vulnerability exists in Craft CMS versions 4.13.8 through 4.16.2 and 5.5.8 through 5.8.3, which stems from a security key compromise that could allow remote code execution...

PT-2025-32419 · Craft · Craft

Name of the Vulnerable Software and Affected Versions: Craft versions 4.13.8 through 4.16.2 Craft versions 5.5.8 through 5.8.3 Description: Craft is a platform for creating digital experiences. A vulnerability exists that allows bypassing security measures, potentially leading to remote code...

CVE-2024-56257

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CoolPlugins Coins MarketCap coins-marketcap allows DOM-Based XSS.This issue affects Coins MarketCap: from n/a through = 5.5.8...

CVE-2024-56257 WordPress Coins MarketCap plugin <= 5.5.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CoolPlugins Coins MarketCap allows DOM-Based XSS.This issue affects Coins MarketCap: from n/a through 5.5.8...

PT-2024-1986 · Ibm · Ibm Filenet Content Manager

Name of the Vulnerable Software and Affected Versions: IBM CP4BA - Filenet Content Manager Component versions 5.5.8.0 through 5.5.11.0 Description: The issue is related to insufficient access control in the IBM FileNet Content Manager component, which could allow a user to gain the privileges of...

Medium: kernel-livepatch-4.14.165-131.185

Issue Overview: In the Linux kernel before 5.5.8, getrawsocket in drivers/vhost/net.c lacks validation of an skfamily field, which might allow attackers to trigger kernel stack corruption via crafted system calls. CVE-2020-10942 Affected Packages: kernel-livepatch-4.14.165-131.185 Issue Correctio...

Linux kernel stack corruption vulnerability

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A kernel stack corruption vulnerability exists in Linux kernel versions prior to 5.5.8. The vulnerability stems from...

CVE-2019-12935

Shopware before 5.5.8 has XSS via the Query String to the backend/Login or backend/Login/load/ URI...

CVE-2018-20172

An issue was discovered in Nagios XI before 5.5.8. The rssurl parameter of rssdashlet/magpierss/scripts/magpieslashbox.php is not filtered, resulting in an XSS vulnerability...

IPS Community Suite 4.1.12.3 - PHP Code Injection

IPS Community Suite 4.1.12.3 - PHP Code Injection --------------------------------------------------------------------------- IPS Community Suite contentclass ; 39. 40. if ! classexists $class or ! inarray 'IPS\Content', classparents $class 41. 42. \IPS\Output::i-error 'nodeerror', '2S226/2', 404...

Winamp 5.5.8 (in_mod plugin) Stack Overflow Exploit (SEH)

No description provided by source. !/usr/bin/python finally got time to finish what I started... Winamp 5.5.8.2985 inmod plugin Stack Overflow SEH WINDOWS XP SP3 EN Fully Patched Bug found by http://www.exploit-db.com/exploits/15248/ POC and Exploit by fdisk @fdiskyou e-mail: fdiskyou at...

MySQL 5.5.8 - Remote Denial of Service (DOS)

No description provided by source. import socket, sys print \n print ---------------------------------------------------------------- print | MySQL 5.5.8 Null Ptr windows | print | Level Smash the Stack | print ---------------------------------------------------------------- print \n...

[ MDVSA-2014:014 ] php

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:014 http://www.mandriva.com/en/support/security/ Package : php Date : January 21, 2014 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in php: Th...

PHP 5.5.x < 5.5.8 Multiple Vulnerabilities

According to its banner, the version of PHP 5.5.x installed on the remote host is a version prior to 5.5.8. It is, therefore, potentially affected by the following vulnerabilities : - A heap-based buffer overflow error exists in the file 'ext/date/lib/parseisointervals.c' related to handling...

Null pointer dereference

MySQL 5.5.8, when running on Windows, allows remote attackers to cause a denial of service NULL pointer dereference via a crafted packet to TCP port 3306...

CVE-2011-5049

MySQL 5.5.8, when running on Windows, allows remote attackers to cause a denial of service NULL pointer dereference via a crafted packet to TCP port 3306...

MySQL 5.5.8 remote denial of service proof of concept exploit

No description provided by source. import socket, sys print "\n" print "----------------------------------------------------------------" print "| MySQL 5.5.8 Null Ptr windows |" print "| Level Smash the Stack |" print "----------------------------------------------------------------" print "\n"...

MySQL 5.5.8 Denial Of Service

import socket, sys print "\n" print "----------------------------------------------------------------" print "| MySQL 5.5.8 Null Ptr windows |" print "| Level Smash the Stack |" print "----------------------------------------------------------------" print "\n"...