CVE-2026-8125

A vulnerability was detected in code-projects Simple Chat System 1.0. This vulnerability affects unknown code of the file sendMessage.php. The manipulation of the argument type/length/business parameter validity results in sql injection. The attack may be launched remotely. The exploit is now...

CVE-2026-8125

A vulnerability was detected in code-projects Simple Chat System 1.0. This vulnerability affects unknown code of the file sendMessage.php. The manipulation of the argument type/length/business parameter validity results in sql injection. The attack may be launched remotely. The exploit is now...

Ubuntu: Security Advisory (USN-8125-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MAL-2025-8125 Malicious code in @kollorg/aliquam-quae-natus (npm)

The package @kollorg/aliquam-quae-natus was found to contain malicious code...

CVE-2025-8125

A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /system/role/authUser/allocatedList. The manipulation of the argument paramsdataScope leads to sql injection. The attack may be launched...

CVE-2025-8125

CVE-2025-8125 affects deerwms deer-wms-2 up to version 3.3. The vulnerability is an SQL injection in the file /system/role/authUser/allocatedList caused by improper handling of the params[dataScope] parameter. It can be exploited remotely, and the exploit has been disclosed publicly. Multiple sou...

CVE-2025-8125 deerwms deer-wms-2 allocatedList sql injection

A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /system/role/authUser/allocatedList. The manipulation of the argument paramsdataScope leads to sql injection. The attack may be launched...

Oracle Linux 10 : firefox (ELSA-2025-8125)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-8125 advisory. 128.11.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.11.0-1 - Update to 128.11.0 128.10.1-1 - Update to 128.10.1...

CVE-2024-8125

CVE-2024-8125 affects OpenText Content Management (Extended ECM) with the WebReports module installed and enabled, versioned 10.0–24.4. The vulnerability is due to improper validation of a specified input type, enabling parameter injection that could lead to remote code execution. The exposure re...

CVE-2024-8125 A remote code vulnerability has been discovered in OpenText™ Content Management.

Improper Validation of Specified Type of Input vulnerability in OpenText™ Content Management Extended ECM allows Parameter Injection. A bad actor with the required OpenText Content Management privileges not root could expose the vulnerability to carry out a remote code execution attack on the...

CVE-2019-8125

creationtimestamp| type| source ---|---|--- 2024-02-04 14:11:35+00:00| seen| https://t.me/ctinow/178827...

com.geeoz.atom:atom-api (>=1.0d12 <=1.0d31), com.geeoz.atom:atom-kie (=1.0d31) +36 more potentially affected by CVE-2014-8125 via org.jbpm:jbpm-bpmn2 (>=5.1.0.Final <=6.2.0.CR4)

org.jbpm:jbpm-bpmn2 MAVEN version =5.1.0.Final, =1.0d12, =1.0d30, =1.0d18, =1.0d12, =1.0d12, =0.2, =1.1.0.17-1, =0.5.0, =0.5.0, =0.5.4 and more Source cves: CVE-2014-8125 Source advisory: OSV:GHSA-6QX9-RF9G-7JMR...

Security Bulletin: XXE Vulnerability in Drools Affects IBM Sterling B2B Integrator (CVE-2014-8125)

Summary IBM Sterling B2B Integrator has addressed the security vulnerability. Vulnerability Details CVEID: CVE-2014-8125 DESCRIPTION: Drools and jBPM could allow a remote attacker to obtain sensitive information, caused by an XML External Entity Injection XXE error within the jBPM runtime. By...

CVE-2016-8125

CVE-2016-8125 is rejected/not used; this entry does not represent an active vulnerability.

CVE-2016-8125

...

CVE-2020-8125

The CVE-2020-8125 issue affects the npm package klona (versions ≤ 1.1.0). Root cause: flaw in input validation enabling prototype pollution, allowing an attacker to corrupt object prototypes and potentially lead to remote code execution or denial of service in applications that deep-clone objects...

CVE-2019-8125

Magento 1 (prior to 1.9.x and 1.14.x) is affected by a remote code execution vulnerability that an authenticated admin can trigger by modifying configuration parameters through a crafted support configuration. This is supported by multiple CVE references in the provided documents and lists SUPEE-...

CVE-2018-8125

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8262, CVE-2018-8274, CVE-2018-8275, CVE-2018-8279, CVE-2018-8301...

Remote code execution

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8125, CVE-2018-8274, CVE-2018-8275, CVE-2018-8279, CVE-2018-8301...

Remote code execution

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8125, CVE-2018-8262, CVE-2018-8274, CVE-2018-8275, CVE-2018-8279...