CVE-2026-9414

CVE-2026-9414 affects SourceCodester’s Indian Invoicing System (invoices module) specifically the Invoice Template Render Database-Backed component. A vulnerability in add_order.php allows manipulation of the customer_name parameter to trigger cross-site scripting (XSS). The flaw is exploitable r...

CVE-2026-9414 SourceCodester Indian Invoicing System Invoice Template Render Database-Backed add_order.php cross site scripting

A security flaw has been discovered in SourceCodester Indian Invoicing System up to 0.x/1.0. The impacted element is an unknown function of the file /Invoicing/addorder.php of the component Invoice Template Render Database-Backed. The manipulation of the argument customername results in cross sit...

EUVD-2020-29689

Malware in sbrugna...

CVE-2025-9414 kalcaddle kodbox Download from Link serverDownload server-side request forgery

A vulnerability was found in kalcaddle kodbox 1.61. Affected by this vulnerability is an unknown functionality of the file /?explorer/upload/serverDownload of the component Download from Link Handler. Performing manipulation of the argument url results in server-side request forgery. Remote...

CVE-2019-9414

In wpasupplicant, there is a possible man in the middle vulnerability due to improper input validation of the basicConstraints field of intermediary certificates. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for...

CVE-2020-8847

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.0.29455. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2018-9414

creationtimestamp| type| source ---|---|--- 2024-12-02 21:10:12+00:00| seen| https://infosec.exchange/users/cve/statuses/113585278905341792 2024-12-02 22:56:34+00:00| seen| https://t.me/cvedetector/11826...

CVE-2018-9414

CVE-2018-9414 affects Google Pixel/Android Bluetooth stack. The issue is in the native function gattServerSendResponseNative (com_android_bluetooth_gatt.cpp), where a missing bounds check allows an out-of-bounds stack write. This can lead to local elevation of privilege with user execution privil...

CVE-2024-9414 Cross-site Scripting vulnerability in LCDS LAquis SCADA

In LAquis SCADA version 4.7.1.511, a cross-site scripting vulnerability could allow an attacker to inject arbitrary code into a web page. This could allow an attacker to steal cookies, redirect users, or perform unauthorized actions...

CVE-2020-9414

The connected CNVD entry confirms a cross-site scripting vulnerability in TIBCO Managed File Transfer Command Center and Internet Server (MFT admin service) affecting 8.2.1 and earlier. An authenticated user with specific permissions could exploit XSS to obtain another user’s session identifier, ...

TIBCO Security Advisory: June 30, 2020 - TIBCO Managed File Transfer -2020-9414

TIBCO Managed File Transfer reflected XSS vulerability Original release date: June30, 2020 Last revised: CVE-2020-9414 Source: TIBCO Software Inc. TIBCO Managed File Transfer reflected XSS vulerability Original release date: June 30, 2020 Last revised: --- Source: TIBCO Software Inc. Systems...

TIBCO Security Advisory: June 30, 2020 - TIBCO Managed File Transfer -2020-9414

TIBCO Managed File Transfer reflected XSS vulerability Original release date: June30, 2020 Last revised: CVE-2020-9414 Source: TIBCO Software Inc. TIBCO Managed File Transfer reflected XSS vulerability Original release date: June 30, 2020 Last revised: --- Source: TIBCO Software Inc. Systems...

CVE-2017-18645

An issue was discovered on Samsung mobile devices with M6.x and N7.x Qualcomm chipsets software. There is a panellpm sysfs stack-based buffer overflow. The Samsung ID is SVE-2017-9414 December 2017...

CVE-2017-18645

An issue was discovered on Samsung mobile devices with M6.x and N7.x Qualcomm chipsets software. There is a panellpm sysfs stack-based buffer overflow. The Samsung ID is SVE-2017-9414 December 2017...

Stack overflow

An issue was discovered on Samsung mobile devices with M6.x and N7.x Qualcomm chipsets software. There is a panellpm sysfs stack-based buffer overflow. The Samsung ID is SVE-2017-9414 December 2017...

CVE-2017-18645

An issue was discovered on Samsung mobile devices with M6.x and N7.x Qualcomm chipsets software. There is a panellpm sysfs stack-based buffer overflow. The Samsung ID is SVE-2017-9414 December 2017...

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.0.29455. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2020-8847

Foxit Reader 9.7.0.29455 is affected by CVE-2020-8847 due to a JPEG2000 parsing flaw that allows out-of-bounds writes in a component handling JPEG2000 data. The issue enables remote code execution and requires user interaction (visiting a malicious page or opening a malicious file). The root caus...

CVE-2020-8847

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.0.29455. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2019-9414

CVE-2019-9414 affects wpa_supplicant on Android 10. The root cause is improper input validation of the basicConstraints field in intermediary certificates, enabling a remote information disclosure via a man‑in‑the‑middle scenario with no user interaction. Impact is partial confidentiality loss; n...