20 matches found
CVE-2026-6914
Computing the MD5 checksum of a malformed BSON object under specific conditions may cause loss of availability in MongoDB server. This issue affects all MongoDB Server v8.2 versions, all MongoDB Server v8.1 versions, MongoDB Server v8.0 versions prior to 8.0.21, MongoDB Server v7.0 versions prior...
CVE-2026-8843
Creating a "2dspherebucket" index on a non-timeseries bucket collection will succeed, but any subsequent attempt to insert a document which triggers updating that index will crash the server. A similar issue occurs when creating "queryableencryptedrange" indices. This issue affects MongoDB Server...
CVE-2026-6914 MD5 checksum creation may cause availability loss
Computing the MD5 checksum of a malformed BSON object under specific conditions may cause loss of availability in MongoDB server. This issue affects all MongoDB Server v8.2 versions, all MongoDB Server v8.1 versions, MongoDB Server v8.0 versions prior to 8.0.21, MongoDB Server v7.0 versions prior...
EUVD-2022-51895
Malicious code in bioql PyPI...
MicroWorld eScan Antivirus 安全漏洞
MicroWorld eScan Antivirus is an antivirus software from MicroWorld, Inc. A security vulnerability exists in MicroWorld eScan Antivirus version 7.0.32, which originates from a buffer overflow in the sprintf function of the USB Password Handler component...
MicroWorld eScan Antivirus 命令注入漏洞
MicroWorld eScan Antivirus is an antivirus software from MicroWorld. A command injection vulnerability exists in MicroWorld eScan Antivirus version 7.0.32. An attacker can exploit this vulnerability to perform operating system command injection locally...
MicroWorld eScan Antivirus 安全漏洞
MicroWorld eScan Antivirus is an antivirus software from MicroWorld. A security vulnerability exists in MicroWorld eScan Antivirus version 7.0.32, which originates in the VirusPopUp component strcpy function that causes a stack buffer overflow...
eScan Antivirus 安全漏洞
eScan Antivirus is a network anti-virus security software from eScan. A security vulnerability exists in eScan Antivirus version 7.0.32, which originates from a stack buffer overflow in the function passPrompt of the component USB Protection Service...
PT-2025-6896 · Microworld · Microword Escan Antivirus
Name of the Vulnerable Software and Affected Versions: MicroWord eScan Antivirus version 7.0.32 Description: A critical issue has been found in the strcpy function of the VirusPopUp component, leading to a stack-based buffer overflow. The attack must be approached locally. The exploit has been...
eScan Antivirus 安全漏洞
eScan Antivirus is a network anti-virus security software from eScan. A security vulnerability exists in eScan Antivirus version 7.0.32, which originates from an incorrect default privilege on the component Quarantine Handler...
PT-2025-4056 · Microworld · Escan Antivirus
Name of the Vulnerable Software and Affected Versions: MicroWorld eScan Antivirus version 7.0.32 Description: The issue affects the Quarantine Handler component, specifically the file /var/Microworld/, leading to incorrect default permissions. This can be exploited locally, and the exploit has be...
MicroWorld eScan Anti-Virus 命令注入漏洞
MicroWorld eScan Anti-Virus is an Internet security solution from MicroWorld, Inc. It provides virus protection for enterprise and home SOHO users. A command injection vulnerability exists in MicroWorld eScan Anti-Virus version 7.0.32, which originates from an operating system command injection i...
PT-2025-4020 · Microworld · Escan Antivirus
Name of the Vulnerable Software and Affected Versions: Microword eScan Antivirus version 7.0.32 Description: A problematic issue has been found, affecting the function removeExtraSlashes of the file /opt/MicroWorld/sbin/rtscanner in the component Folder Watch List Handler. This issue leads to a...
MicroWorld eScan Anti-Virus 安全漏洞
MicroWorld eScan Anti-Virus is an Internet security solution from MicroWorld USA. It provides virus protection for corporate and home SOHO users. A security vulnerability exists in MicroWorld eScan Anti-Virus version 7.0.32, which stems from the fact that some functions in the file...
Joget 跨站脚本漏洞
Joget is an open source no-code/low-code application platform from Joget Open Source. For faster and simpler digital conversion DX. A cross-site scripting vulnerability exists in Joget version 7.0.32 and prior versions. An attacker exploited the vulnerability to perform a cross-site scripting...
SeoToaster Ecommerce / CRM / CMS 3.0.0 - Local File Inclusion
Exploit Title: SeoToaster Ecommerce 3.0.0 - Local File Inclusion Dork: N/A Date: 2019-01-17 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.seotoaster.com/shopping-cart/ Software Link: https://www.seotoaster.com/downloads/seotoaster.v3.0.0.zip Version: 3.0.0 Category: Webapps Tested on:...
PHP 5.6.x < 5.6.38 Transfer-Encoding Parameter XSS Vulnerability
According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.38, 7.0.x prior to 7.0.32, 7.1.x prior to 7.1.22 or 7.2.x prior to 7.2.10. It is, therefore, affected by a cross-site scripting vulnerability. An attacker could leverage this vulnerability to inject...
Apache Tomcat Session Fixation Vulnerability (Nov 2012) - Windows
Apache Tomcat is prone to a session fixation vulnerability. Copyright C 2013 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
Tomcat/JBoss Web - Bypass of CSRF prevention filter
org/apache/catalina/filters/CsrfPreventionFilter.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.32 allows remote attackers to bypass the cross-site request forgery CSRF protection mechanism via a request that lacks a session identifier...
Apache Tomcat Multiple Critical Vulnerabilities
Some critical vulnerabilities have been reported in Apache Tomcat, which can be exploited by malicious people to bypass certain security restrictions and cause a DoS Denial of Service attack. These vulnerabilities affect Apache Tomcat 6.x and Apache Tomcat 7.x . Apache Tomcat vulnerabilities...