CVE-2013-7364

An unspecified J2EE core service in the J2EE Engine in SAP NetWeaver does not properly restrict access, which allows remote attackers to read and write to arbitrary files via unknown vectors...

MAL-2025-7364 Malicious code in @crabas0npm/laborum-qui-delectus (npm)

The package @crabas0npm/laborum-qui-delectus was found to contain malicious code...

CVE-2019-7364

DLL preloading vulnerability in versions 2017, 2018, 2019, and 2020 of Autodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D and version 2017 of AutoCAD P&ID.; An attacker may trick a use...

CVE-2024-7364

creationtimestamp| type| source ---|---|--- 2024-08-01 22:57:09+00:00| seen| https://t.me/cvedetector/2266...

CVE-2024-7364

CVE-2024-7364 affects SourceCodester Tracking Monitoring Management System 1.0. The vulnerability is a SQL injection in the /manage_records.php file triggered by manipulating the id parameter, with remote exploitation. Multiple connected sources confirm this same issue and note the exploit has be...

CVE-2024-7364 SourceCodester Tracking Monitoring Management System manage_records.php sql injection

A vulnerability has been found in SourceCodester Tracking Monitoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /managerecords.php. The manipulation of the argument id leads to sql injection. The attack can be launched...

GHSA-7364-P4WC-8MJ4

creationtimestamp| type| source ---|---|--- 2022-06-29 00:36:23+00:00| published-proof-of-concept| https://t.me/cibsecurity/45333...

CVE-2020-7364

User Interface UI Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects UCWeb's UC Browser version 13.0.8 and prior versions...

CVE-2020-7364

User Interface UI Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browser. This issue affects UCWeb's UC Browser version 13.0.8 and prior versions...

CVE-2020-7364

CVE-2020-7364 is a UI-based spoofing vulnerability in UCWeb UC Browser (Android) affecting version 13.0.8 and earlier. The root cause is a misrepresentation in the address bar, enabling an attacker to obfuscate the true source of data via JavaScript timing tricks, potentially causing a pop-up or ...

CVE-2019-7364

CVE-2019-7364 describes a DLL preloading vulnerability in Autodesk products (2017–2020 Autodesk Advanced Steel, Civil 3D, AutoCAD and related tools; plus AutoCAD P&ID 2017). The issue allows an attacker to cause code execution by persuading a user to open a malicious DWG file that leverages the D...

CVE-2019-7364

DLL preloading vulnerability in versions 2017, 2018, 2019, and 2020 of Autodesk Advanced Steel, Civil 3D, AutoCAD, AutoCAD LT, AutoCAD Architecture, AutoCAD Electrical, AutoCAD Map 3D, AutoCAD Mechanical, AutoCAD MEP, AutoCAD Plant 3D and version 2017 of AutoCAD P&ID. An attacker may trick a user...

CVE-2018-7364

All versions up to ZXINOS-RESV1.01.43 of the ZTE ZXIN10 product European region are impacted by improper access control vulnerability. Due to improper access control to devcomm process, an unauthorized remote attacker can exploit this vulnerability to execute arbitrary code with root privileges...

CVE-2018-7364

The CVE-2018-7364 entry concerns ZTE ZXIN10 (European region) with ZXINOS-RESV1.01.43. Affected: all versions up to ZXINOS-RESV1.01.43. Root cause: improper access control to the devcomm process allowing an unauthenticated, remote attacker to execute arbitrary code with root privileges. Impact: h...

CVE-2017-7364

CVE-2017-7364 affects Qualcomm devices using CAF Android with the Linux kernel. The issue resides in __mdss_fb_copy_destscaler_data(), where ds_data[i].scale may point to a user-provided address, which can be freed on an error, causing a use-after-free condition. CVSS3 vector indicates a network-...

CVE-2016-7364

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2016. Notes: none...

CVE-2016-7364

...

CVE-2016-7364

CVE-2016-7364 is rejected and does not correspond to an active vulnerability entry.

CVE-2015-7364

The HTMLQuickform library, as used in Revive Adserver before 3.2.2, allows remote attackers to bypass the CSRF protection mechanism via an empty token...

CVE-2015-7364

The HTMLQuickform library, as used in Revive Adserver before 3.2.2, allows remote attackers to bypass the CSRF protection mechanism via an empty token...