77 matches found
CVE-2023-40953
icms 7.0.16 is vulnerable to Cross Site Request Forgery CSRF...
EUVD-2023-43505
Malicious code in bioql PyPI...
EUVD-2024-18828
Malicious code in bioql PyPI...
EUVD-2023-46774
Malicious code in bioql PyPI...
EUVD-2024-54788
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-0755
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The various bsonappend functions in the MongoDB C driver library may be susceptible to buffer overflow when performing operations that could result in a final...
Linux Distros Unpatched Vulnerability : CVE-2024-21108
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily...
Linux Distros Unpatched Vulnerability : CVE-2024-21112
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily...
Linux Distros Unpatched Vulnerability : CVE-2024-21121
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily...
Linux Distros Unpatched Vulnerability : CVE-2024-21115
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily...
Linux Distros Unpatched Vulnerability : CVE-2024-21107
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily...
CVE-2024-9342
Affected software: Eclipse GlassFish 7.0.16 and earlier. The issue is unlimited failed login attempts, enabling brute-force login; impact per sources includes potential unauthorized access. CVSS metrics in the initial document show high impact confidentiality, integrity, availability with network...
CVE-2024-32492
An issue was discovered in Znuny 7.0.1 through 7.0.16 where the ticket detail view in the customer front allows the execution of external JavaScript...
CVE-2023-47667
Cross-Site Request Forgery CSRF vulnerability in Mammothology WP Full Stripe Free.This issue affects WP Full Stripe Free: from n/a through 7.0.16...
CVE-2023-42321
Cross Site Request Forgery CSRF vulnerability in icmsdev iCMSv.7.0.16 allows a remote attacker to execute arbitrary code via the user.admincp.php, members.admincp.php, and group.admincp.php files...
CVE-2020-26641
A Cross Site Request Forgery CSRF vulnerability was discovered in iCMS 7.0.16 which can allow an attacker to execute arbitrary web scripts...
MongoDB 安全漏洞
MongoDB is a document-oriented database management system from the American company MongoDB. A security vulnerability exists in MongoDB that stems from a specially crafted MongoDB wired protocol message that could cause mongos to crash during command authentication. The following versions are...
CVE-2025-0755 MongoDB C Driver bson library may be susceptible to buffer overflow
The various bsonappend functions in the MongoDB C driver library may be susceptible to buffer overflow when performing operations that could result in a final BSON document which exceeds the maximum allowable size INT32MAX, resulting in a segmentation fault and possible application crash. This...
CVE-2024-55591
An Authentication Bypass Using an Alternate Path or Channel vulnerability CWE-288 affecting FortiOS version 7.0.0 through 7.0.16 and FortiProxy version 7.0.0 through 7.0.19 and 7.2.0 through 7.2.12 allows a remote attacker to gain super-admin privileges via crafted requests to Node.js websocket...
CVE-2024-48937
Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows XSS. JavaScript code in the short description of the SLA field in Activity Dialogues is executed...