Input validation

outdoorbits little-backup-box aka Little Backup Box before f39f91c allows remote attackers to execute arbitrary code because the PHP extract function is used for untrusted input...

Little Backup Box Security Vulnerability

Little Backup Box is a pocket-sized backup solution from the individual developers at outdoorbits that turns a single board computer into a multifunctional one. Little Backup Box suffers from a security vulnerability that stems from the presence of untrusted inputs to the PHP extract function,...

CVE-2023-52262

outdoorbits little-backup-box aka Little Backup Box before f39f91c allows remote attackers to execute arbitrary code because the PHP extract function is used for untrusted input...

PT-2023-8937 · Outdoorbits · Little-Backup-Box

Name of the Vulnerable Software and Affected Versions: outdoorbits little-backup-box versions prior to f39f91c Description: The issue allows remote attackers to execute arbitrary code because the PHP extract function is used for untrusted input. This is due to insufficient validation of input dat...

CVE-2023-52262

Outdoorbits Little-backup-box; vulnerable in versions prior to f39f91c due to untrusted input being fed to PHP extract, enabling remote code execution. A fix exists in the commit f39f91c; advised remediation is to update to a version after f39f91c (or temporarily disable PHP extract for untrusted...

CVE-2023-32128

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Adastra Crypto Cryptocurrency Payment & Donation Box – Accept Payments in any Cryptocurrency on your WP Site for Free.This issue affects Cryptocurrency Payment & Donation Box – Accept Payments in a...

CVE-2023-32128

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Adastra Crypto Cryptocurrency Payment & Donation Box – Accept Payments in any Cryptocurrency on your WP Site for Free.This issue affects Cryptocurrency Payment & Donation Box – Accept Payments in a...

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Adastra Crypto Cryptocurrency Payment & Donation Box – Accept Payments in any Cryptocurrency on your WP Site for Free.This issue affects Cryptocurrency Payment & Donation Box – Accept Payments in a...

CVE-2023-32128

CVE-2023-32128 relates to a SQL Injection in the WordPress plugin “Cryptocurrency Donation Box – Accept Payments in any Cryptocurrency on your WP Site for Free” (Adastra Crypto). Affected versions are ≤ 2.2.7; patched in 2.2.8. Multiple sources (Patchstack, Red Hat entry, CVE listing) confirm the...

CVE-2023-32128 WordPress Cryptocurrency Donation Box – Bitcoin & Crypto Donations Plugin <= 2.2.7 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Adastra Crypto Cryptocurrency Payment & Donation Box – Accept Payments in any Cryptocurrency on your WP Site for Free.This issue affects Cryptocurrency Payment & Donation Box – Accept Payments in a...

CVE-2023-6562

JPX Fragment List flst box vulnerability in Kakadu 7.9 allows an attacker to exfiltrate local and remote files reachable by a server if the server allows the attacker to upload a specially-crafted the image that is displayed back to the attacker...

LDAP Tool Box Self Service Password Security Vulnerability

LDAP Tool Box Self Service Password is an open source PHP application for LDAP Tool Box that allows users to change passwords in the LDAP directory. A security vulnerability exists in LDAP Tool Box Self Service Password prior to v.1.5.4 that could allow a remote attacker to execute arbitrary code...

PT-2023-23633 · WordPress · Adastra Crypto Cryptocurrency Payment & Donation Box

Name of the Vulnerable Software and Affected Versions: Adastra Crypto Cryptocurrency Payment & Donation Box – Accept Payments in any Cryptocurrency on your WP Site for Free versions n/a through 2.2.7 Description: The issue is related to an Improper Neutralization of Special Elements used in an SQ...

WordPress Plugin Cryptocurrency Payment & Donation Box SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A SQL injection vulnerability exists in the...

CVE-2023-49739

Vulnerability in IdeaBox Creations PowerPack Pro for Elementor.This issue affects PowerPack Pro for Elementor: from n/a through 2.9.23...

CVE-2023-47465

An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...

DEBIAN-CVE-2023-47465

An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...

UBUNTU-CVE-2023-47465

An issue in GPAC v.2.2.1 and before allows a local attacker to cause a denial of service DoS via the cttsboxread function of file src/isomedia/boxcodebase.c...

GPAC Security Vulnerabilities

GPAC is an open source multimedia framework. A security vulnerability exists in GPAC v.2.2.1. An attacker can exploit this vulnerability to cause a Denial of Service DoS via the cttsboxread function in the file src/isomedia/boxcodebase.c...

PT-2023-8963 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC versions 2.2.1 and earlier Description: The issue is related to the ctts box read function in the GPAC multimedia platform, which is associated with resource release errors. This can allow a local attacker to cause a denial of service Do...