CVE-2026-7727 Shandong Hoteam Software PDM Product Data Management System DataService GetQueryMachineGridOnePageData sql injection

A vulnerability was determined in Shandong Hoteam Software PDM Product Data Management System up to 8.3.9. This affects the function GetQueryMachineGridOnePageData of the file /Base/BaseService.asmx/DataService. This manipulation of the argument SortOrder causes sql injection. The attack can be...

CVE-2026-7727

Technical details about CVE-2026-7727 are not publicly available in the provided documents. Monitor for updates.

EUVD-2026-26881

A vulnerability was determined in Shandong Hoteam Software PDM Product Data Management System up to 8.3.9. This affects the function GetQueryMachineGridOnePageData of the file /Base/BaseService.asmx/DataService. This manipulation of the argument SortOrder causes sql injection. The attack can be...

CVE-2026-7727 Shandong Hoteam Software PDM Product Data Management System DataService GetQueryMachineGridOnePageData sql injection

A vulnerability was determined in Shandong Hoteam Software PDM Product Data Management System up to 8.3.9. This affects the function GetQueryMachineGridOnePageData of the file /Base/BaseService.asmx/DataService. This manipulation of the argument SortOrder causes sql injection. The attack can be...

PT-2026-36756

Name of the Vulnerable Software and Affected Versions Shandong Hoteam Software PDM Product Data Management System versions prior to 8.3.10 Description A remote SQL injection can be initiated through the manipulation of the SortOrder argument. This issue affects the GetQueryMachineGridOnePageData...

EUVD-2019-5460

Malware in sbrugna...

WordPress File Manager Pro Plugin <= 8.3.9 is vulnerable to Cross Site Request Forgery (CSRF)

Software File Manager Pro Type Plugin Vulnerable versions = 8.3.9 Fixed in 8.3.10 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-8507 Patch priority Low CVSS severity Low 8.8 Developer Claim ownership PSID caf0adb29b86 Credits TANG Cheuk Hei...

OPENSUSE-SU-2024:12260-1 grafana-8.3.10-1.1 on GA media

These are all security issues fixed in the grafana-8.3.10-1.1 package on the GA media of openSUSE Tumbleweed...

Grafana Labs Stored XSS (CVE-2022-31097)

According to its self-reported version number, the version of Grafana Labs running on the remote host is affected by a stored cross-site scripting vulnerability: - XSS vulnerability in the Unified Alerting feature of Grafana. After analysis, this stored XSS could be used to elevate privileges fro...

SUSE-SU-2022:3765-1 Security update for grafana

This update for grafana fixes the following issues: Updated to version 8.3.10 jscSLE-24565, jscSLE-23422, jscSLE-23439: - CVE-2022-31097: Fixed XSS vulnerability in the Unified Alerting bsc1201535. - CVE-2022-31107: Fixed OAuth account takeover vulnerability bsc1201539. - CVE-2022-21702: Fixed XS...

Grafana XSS Vulnerability (GHSA-vw7q-p2qg-4m5f)

Grafana is prone to a cross-site scripting XSS vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

CVE-2019-20832

An issue was discovered in Foxit PhantomPDF before 8.3.10. It has homograph mishandling...

CVE-2019-20832

Foxit PhantomPDF is affected by CVE-2019-20832 due to homograph mishandling in versions before 8.3.10 (improper handling of homonyms). The issue is documented across multiple sources (including CNVD, Red Hat, NVD) with the same description; exploitation details and a confirmed patch/fix are not p...

Foxit PhantomPDF Buffer Overflow Vulnerability

Foxit PhantomPDF is China's Foxit Foxit company a PDF document reader. A security vulnerability exists in Foxit PhantomPDF versions prior to 8.3.10. An attacker can exploit this vulnerability to cause heap damage...

Foxit PhantomPDF Null Pointer Dereference Vulnerability

PhantomPDF is a multifunctional PDF editor. A null pointer dereference vulnerability exists in Foxit PhantomPDF versions prior to 8.3.10. An attacker can exploit this vulnerability to cause the application to crash...

CVE-2019-14210

An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to Memory Corruption due to the use of an invalid pointer copy, resulting from a destructed string object...

CVE-2019-14208

CVE-2019-14208 affects Foxit PhantomPDF prior to 8.3.10. The issue is a NULL pointer dereference that can crash the application when extracting a PDF object from a document or when parsing a portfolio containing a null dictionary. This vulnerability is documented across multiple sources (NVD/NVD-...

Foxit PhantomPDF < 8.3.10 Multiple Vulnerabilities

According to its version, the Foxit PhantomPDF application formally known as Phantom installed on the remote Windows host is prior to 8.3.10. It is, therefore, affected by multiple vulnerabilities: - A heap-based buffer overflow condition exists in the proxyCPDFAction, proxyCheckLicence,...