CVE-2026-7148

CVE-2026-7148 affects CodeAstro Online Classroom 1.0 and a vulnerability in the unknown part of the file /addnewfaculty. A manipulation of the argument fname can lead to SQL injection performed remotely. The published exploit indicates the issue is actionable (exploitation maturity: PROOF-OF-CONC...

MAL-2025-7148 Malicious code in @crabas0npm/accusamus-nesciunt-culpa (npm)

The package @crabas0npm/accusamus-nesciunt-culpa was found to contain malicious code...

CVE-2025-7148

creationtimestamp| type| source ---|---|--- 2025-07-08 00:11:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltfzalp2zr2e...

CVE-2020-7148

A deployselectsoftware expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center iMC versions: Prior to iMC PLAT 7.3 E0705P07...

CVE-2016-7148

creationtimestamp| type| source ---|---|--- 2024-05-02 22:00:39+00:00| seen| https://t.me/arpsyndicate/4907...

ml.shifu:shifu-tensorflow-eval (=0.12.0), ml.shifu:shifu-tensorflow-on-yarn (=0.12.0) potentially affected by CVE-2023-7148 via ml.shifu:shifu (=0.12.0)

ml.shifu:shifu MAVEN version =0.12.0 is affected by a known vulnerability. The following packages have a transitive dependency on ml.shifu:shifu and may be impacted: - ml.shifu:shifu-tensorflow-eval =0.12.0 - ml.shifu:shifu-tensorflow-on-yarn =0.12.0 Source cves: CVE-2023-7148 Source advisory:...

CVE-2023-7148

Summary of CVE-2023-7148 (ShifuML Shifu 0.12.0) : The vulnerability affects the Java Expression Language Handler, specifically the file src/main/java/ml/shifu/shifu/core/DataPurifier.java, where manipulation of the FilterExpression argument enables code injection. This can be exploited remotely; ...

BELL-CVE-2019-7148 CVE-2019-7148 does not affect BellSoft software

Bulletin has no description...

SUSE CVE-2019-7148

An attempted excessive memory allocation was discovered in the function readlongnames in elfbegin.c in libelf in elfutils 0.174. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted elf input, which leads to an out-of-memory exception. NOTE: The maintainers...

SUSE: Security Advisory (SUSE-SU-2022:2614-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for dwarves (SUSE-SU-2022:2614-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2020-7148

The CVE-2020-7148 entry concerns Hewlett Packard Enterprise Intelligent Management Center (iMC) before version 7.3 (E0705P07). The root cause is a vulnerability in deploySelectSoftware expression handling, specifically the beanName parameter used in deploySelectSoftware.xhtml, enabling a language...

CVE-2018-7148

This CVE entry is rejected/not used and does not represent an active vulnerability entry.

Huawei EulerOS: Security Advisory for elfutils (EulerOS-SA-2020-1448)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for elfutils (EulerOS-SA-2019-2510)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for elfutils (EulerOS-SA-2019-2102)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Photon OS 2.0: Elfutils PHSA-2019-2.0-0164

An update of the elfutils package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0164. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Fedora Update for elfutils FEDORA-2019-44a9d99647

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 29 : elfutils (2019-44a9d99647)

New upstream release 0.176. Fixes CVE-2019-7146, CVE-2019-7148, CVE-2019-7149, CVE-2019-7150, CVE-2019-7664 and CVE-2019-7665. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically...

CVE-2019-7148

An attempted excessive memory allocation was discovered in the function readlongnames in elfbegin.c in libelf in elfutils 0.174. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted elf input, which leads to an out-of-memory exception. NOTE: The maintainers...