EUVD-2020-29914

Malware in sbrugna...

WordPress User Registration plugin <= 4.3.0 - Authenticated (Admin+) SQL Injection vulnerability

Authenticated Admin+ SQL Injection vulnerability discovered by Jack Pas Dark. in WordPress Plugin User Registration versions = 4.3.0...

MAL-2025-9085 Malicious code in @malware-test-yucca-moras-pekes-lades/test-mlw3-yucca-moras-pekes-lades (npm)

The package @malware-test-yucca-moras-pekes-lades/test-mlw3-yucca-moras-pekes-lades was found to contain malicious code...

CVE-2019-9085

Hoteldruid before v2.3.1 allows remote authenticated users to cause a denial of service invoice-creation outage via the nfile parameter to visualizzacontratto.php with invalid arguments any non-numeric value, as demonstrated by the anno=2019transazione=1№contratto=1file=a query string to...

CVE-2020-9085

There is a NULL pointer dereference vulnerability in some Huawei products. An attacker may send specially crafted POST messages to the affected products. Due to insufficient validation of some parameter in the message, successful exploit may cause some process abnormal. Vulnerability ID:...

CVE-2020-9085

creationtimestamp| type| source ---|---|--- 2024-12-27 09:41:21+00:00| seen| https://infosec.exchange/users/cve/statuses/113724127983067291 2024-12-27 10:15:39+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lebqzcwtnd2c 2024-12-27 11:48:40+00:00| seen|...

CVE-2020-9085

CVE-2020-9085 describes a NULL pointer dereference in some Huawei products. The issue arises from insufficient validation of parameters in specially crafted POST messages, allowing an attacker to trigger abnormal process behavior over the network (attack vector: NETWORK, UI: NONE, privileges: NON...

CVE-2020-9085

There is a NULL pointer dereference vulnerability in some Huawei products. An attacker may send specially crafted POST messages to the affected products. Due to insufficient validation of some parameter in the message, successful exploit may cause some process abnormal. Vulnerability ID:...

CVE-2024-9085 code-projects Restaurant Reservation System index.php sql injection

A vulnerability was found in code-projects Restaurant Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument date leads to sql injection. The attack may be initiated remotely. The exploit has been...

Security Bulletin: Denial of service vulnerability affects IBM Unified Extensible Firmware Interface (CVE-2018-9085)

Summary IBM System x, Flex and BladeCenter systems have addressed the following denial of service vulnerability in Unified Extensible Firmware Interface UEFI. Vulnerability Details CVEID: CVE-2018-9085 DESCRIPTION: Lenovo System x is vulnerable to a denial of service, caused by missing flash memo...

CVE-2015-9085

CVE-2015-9085 entry is rejected/not used; this candidate is not an active vulnerability entry.

Advisory ROSA-SA-2021-1902

Software: libwebp 0.3.0 OS: Cobalt 7.9 CVE-ID: CVE-2016-9085 CVE-Crit: LOW CVE-DESC: multiple integer overflow in libwebp allows attackers to have undefined impact via unknown vectors. CVE-STATUS: default CVE-REV: default...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9085)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9085 advisory. - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492109 CVE-2021-26930 - xen-scsiback: dont 'handle' error by BUG Jan Beulich...

Security Advisory - NULL Pointer Dereference Vulnerability in Some Huawei Products

There is a NULL pointer dereference vulnerability in some Huawei products. An attacker may send specially crafted POST messages to the affected products. Due to insufficient validation of some parameter in the message, successful exploit may cause some process abnormal. Vulnerability ID:...

CVE-2019-9085

Hoteldruid before v2.3.1 allows remote authenticated users to cause a denial of service invoice-creation outage via the nfile parameter to visualizzacontratto.php with invalid arguments any non-numeric value, as demonstrated by the anno=2019&idtransazione=1&numerocontratto=1&nfile=a query string ...

CVE-2019-9085

CVE-2019-9085 affects Hoteldruid before v2.3.1. Affected component: the visualizza_contratto.php endpoint, where the n_file parameter accepts non-numeric values. Root cause: invalid arguments lead to a denial of service (invoice-creation outage). Impact as described: remote authenticated users ca...

CVE-2018-9085

CVE-2018-9085 affects Lenovo/IBM System x family vendors. A missing write-protection lock bit after boot enables a locally authenticated attacker with admin access to modify flash areas containing Intel SPS and system flash descriptors. This can lead to system instability or DoS-like behavior, as...

CVE-2018-9085 Missing System x Flash Memory Write Protection Lock Bit

A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services SPS and the system Flash Descriptors...

Missing System x Flash Memory Write Protection Lock Bit - US

Lenovo Security Advisory: LEN-24477 Potential Impact: Denial of service Severity: High Scope of Impact: Lenovo-specific CVE Identifier: CVE-2018-9085 Summary Description: A write protection lock bit was left unset after boot on an older generation of System x server, potentially allowing an...

Missing System x Flash Memory Write Protection Lock Bit - Lenovo Support US

No description provided...