12 matches found
Aranda Service Desk 安全漏洞
Aranda Service Desk is an IT service management and helpdesk system provided by the American company Aranda. Versions of Aranda Service Desk prior to 8.3.12 contained security vulnerabilities. These vulnerabilities stemmed from the Aranda File Server component storing daily activity logs in a...
CVE-2019-20813
An issue was discovered in Foxit PhantomPDF before 8.3.12. It has a NULL pointer dereference...
EUVD-2019-11351
Malware in sbrugna...
CVE-2024-8925 affecting package php for versions less than 8.3.12-1
CVE-2024-8925 affecting package php for versions less than 8.3.12-1. A patched version of the package is available...
CVE-2024-9026 affecting package php for versions less than 8.3.12-1
CVE-2024-9026 affecting package php for versions less than 8.3.12-1. An upgraded version of the package is available that resolves this issue...
BIT-PHP-2024-8926 PHP CGI Parameter Injection Vulnerability (CVE-2024-4577 bypass)
In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, when using a certain non-standard configurations of Windows codepages, the fixes for CVE-2024-4577 https://github.com/advisories/GHSA-vxpp-6299-mxw3 may still be bypassed and the same command injection related to Windows...
AZL-50153 CVE-2024-8925 affecting package php for versions less than 8.1.30-1
In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, erroneous parsing of multipart form data contained in an HTTP POST request could lead to legitimate data not being processed. This could lead to malicious attacker able to control part of the submitted data being able to...
Fedora 40 : php (2024-2b429e720e)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-2b429e720e advisory. PHP version 8.3.12 26 Sep 2024 CGI: Fixed bug GHSA-p99j-rfp4-xqvq Bypass of CVE-2024-4577, Parameter Injection Vulnerability. CVE-2024-8926 nielsdos...
PHP 8.3.x < 8.3.12 Multiple Vulnerabilities
The version of PHP installed on the remote host is prior to 8.3.12. It is, therefore, affected by multiple vulnerabilities as referenced in the Version 8.3.12 advisory. - In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, when using a certain non- standard configurations ...
Foxit PhantomPDF Resource Management Error Vulnerability (CNVD-2020-32088)
Foxit PhantomPDF is China's Foxit Foxit company a PDF document reader. A security vulnerability exists in Foxit PhantomPDF versions prior to 8.3.12. An attacker can exploit the vulnerability to exhaust the stack crash...
Foxit PhantomPDF code issue vulnerability (CNVD-2020-32089)
Foxit PhantomPDF is China's Foxit Foxit company a PDF document reader. A code issue vulnerability exists in Foxit PhantomPDF versions prior to 8.3.12. An attacker could exploit this vulnerability to cause a denial of service...
CVE-2019-20813
Foxit PhantomPDF prior to 8.3.12 is affected by CVE-2019-20813, a NULL pointer dereference issue. Affects Foxit PhantomPDF (versions before 8.3.12). The issue is described as a null pointer dereference; CVSS metrics in the source indicate a Network attack vector with no authentication, low attack...