MINI-XW2X-92PG-7224

Bulletin has no description...

CVE-2026-7224 SourceCodester Pizzafy Ecommerce System ajax.php delete_cart sql injection

A security flaw has been discovered in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function deletecart of the file /admin/ajax.php?action=deletecart. Performing a manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit has been...

EUVD-2020-5671

Malware in sbrugna...

CVE-2025-7224

INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...

CVE-2025-7224 INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...

CVE-2025-7224

creationtimestamp| type| source ---|---|--- 2025-07-07 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-475/ 2025-08-26 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-238-01...

CVE-2024-7224

A vulnerability was found in SourceCodester Lot Reservation Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /lotdetails.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

Linux Distros Unpatched Vulnerability : CVE-2017-7224

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The findnearestline function in objdump in GNU Binutils 2.28 is vulnerable to an invalid write of size 1 while disassembling a corrupt binary that contains an...

CVE-2024-7224

creationtimestamp| type| source ---|---|--- 2024-07-30 10:43:13+00:00| seen| https://t.me/cvedetector/2002...

CVE-2024-7224 SourceCodester Lot Reservation Management System lot_details.php sql injection

A vulnerability was found in SourceCodester Lot Reservation Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /lotdetails.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

CVE-2023-7224

creationtimestamp| type| source ---|---|--- 2024-01-08 15:26:32+00:00| seen| https://t.me/ctinow/164400 2024-01-25 12:41:22+00:00| seen| https://t.me/ctinow/173411...

CVE-2023-7224

OpenVPN Connect version 3.0 through 3.4.6 on macOS allows local users to execute code in external third party libraries using the DYLDINSERTLIBRARIES environment variable...

CVE-2023-7224

The CVE-2023-7224 issue affects OpenVPN Connect on macOS, version 3.0–3.4.6. The vulnerability arises when a local user can cause execution of code in external third‑party libraries via the DYLD_INSERT_LIBRARIES environment variable, indicating a local code‑execution risk. Documents confirm the a...

Fat Free CRM vulnerable to Exposure of Sensitive Information

Fat Free CRM before 0.12.1 does not restrict XML serialization, which allows remote attackers to obtain sensitive information via a direct request, as demonstrated by a request for users/1.xml, a different vulnerability than CVE-2013-7224...

SUSE: Security Advisory (SUSE-SU-2017:3170-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-7224

CVE-2020-7224 affects the Aviatrix OpenVPN client prior to 2.5.7 on Linux, macOS, and Windows. The issue arises when OpenSSL parameters are altered from the issued value set, potentially allowing unauthorized third-party libraries to load. Public sources (NVD entry and Red Hat advisory) provide t...

CVE-2014-7224

CVE-2014-7224 is an Android code‑execution vulnerability affecting versions prior to 4.4.0, tied to the addJavascriptInterface method and the accessibility/accessibilityTraversal objects. A remote attacker could potentially execute arbitrary code; NVD assigns high severity (CVSS v3.1: 8.8, vector...

SUSE SLES12 Security Update : CaaS Platform 2.0 images (SUSE-SU-2018:0053-1)

The Docker images provided with SUSE CaaS Platform 2.0 have been updated to include the following updates: binutils : - Update to version 2.29 - 18750 bsc1030296 CVE-2014-9939 - 20891 bsc1030585 CVE-2017-7225 - 20892 bsc1030588 CVE-2017-7224 - 20898 bsc1030589 CVE-2017-7223 - 20905 bsc1030584...

CVE-2015-7224

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysqluser' user parameter contains a host with a netmask...

CVE-2015-7224

puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysqluser' user parameter contains a host with a netmask...