WannaRace - WebApp Intentionally Made Vulnerable To Race Condition For Practicing Race Condition

WebApp intentionally made vulnerable to Race Condition Description Race Condition vulnerability can be practiced in the developed WebApp. Task is to buy a Mega Box using race condition that costs more than available vouchers. Two challenges are made for practice. Challenge B is to be solved when...

GPAC 缓冲区错误漏洞

GPAC is an open source multimedia framework. A security vulnerability exists in GPAC 1.0.1, which stems from a heap-based buffer overflow vulnerability in MP4Box of GPAC 1.0.1, which can be exploited by an attacker to produce unspecified other impacts through files made in MP4Box commands by usin...

GPAC 代码问题漏洞

GPAC is an open source multimedia framework. GPAC has a denial of service vulnerability in version 1.0.1, which stems from the existence of a pointer dereference in the software's gfisomboxsize function, which could be exploited by an attacker to cause a denial of service...

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

CVE-2021-44228Apache Log4j Remote Code Execution） all log...

PT-2022-12527 · Gpac · Gpac

Name of the Vulnerable Software and Affected Versions: GPAC version 1.0.1 Description: A Pointer Dereference issue exists in the gf isom box size function, which could cause a Denial of Service context-dependent. Recommendations: For GPAC version 1.0.1, consider disabling the gf isom box size...

com.boxframework:box-server_2.12 (>=1.2.22 <=1.2.23), com.codacy:codacy-seed-client-akka-http_2.12 (>=1.1.0-master.51.7b7549c_akka25Circe08 <=1.2.0_akka25Circe08) +1 more potentially affected by CVE-2020-28452 via com.softwaremill.akka-http-session:core_2.12 (>=0.3.0 <=0.6.0)

com.softwaremill.akka-http-session:core2.12 MAVEN version =0.3.0, =1.2.22, =1.1.0-master.51.7b7549cakka25Circe08, =0.3.0, =0.6.0 Source cves: CVE-2020-28452 Source advisory: OSV:GHSA-4JF5-JGGP-G56J...

DEBIAN-CVE-2021-46041

A Segmentation Fault Vulnerability exists in GPAC 1.0.1 via the co64boxnew function, which causes a Denial of Service...

CVE-2021-46041

A Segmentation Fault Vulnerability exists in GPAC 1.0.1 via the co64boxnew function, which causes a Denial of Service...

UBUNTU-CVE-2021-46041

A Segmentation Fault Vulnerability exists in GPAC 1.0.1 via the co64boxnew function, which causes a Denial of Service...

PT-2022-12522 · Gpac · Gpac

Name of the Vulnerable Software and Affected Versions: GPAC version 1.0.1 Description: A Segmentation Fault issue exists via the co64 box new function, causing a Denial of Service. Recommendations: For GPAC version 1.0.1, consider disabling the co64 box new function as a temporary workaround unti...

DEBIAN-CVE-2021-45831

A Null Pointer Dereference vulnerability exitgs in GPAC 1.0.1 in MP4Box via strlenavx2, which causes a Denial of Service...

CVE-2020-21237

An issue in the user login box of LJCMS v1.11 allows attackers to hijack user accounts via brute force attacks...

CSCMS 安全漏洞

CScms is a content management system CMS developed based on the CI framework. cscms v4.0 is vulnerable due to a lack of effective protection against brute force attacks in the software user login box, which can be exploited by attackers to hijack user accounts via brute force attacks...

WordPress Lets-Box Plugin Cross-Site Scripting Vulnerability

WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language.Lets-Box Plugin is a WordPress open source application plugin.Wordpress Lets-Box Plugin has a cross-site scripting vulnerability in versions prior to 1.15.3, which stems from the Lets-Box Plugin'...

ModelSim Simulation and Questa Simulation Underprotected Credential Vulnerability

Questa and ModelSim simulators are used worldwide to simulate, debug, and verify integrated circuit designs, etc. ModelSim Simulation and Questa Simulation do not protect sufficient credentials, and the RSA white-box implementation in the affected application does not adequately protect the...

CVE-2021-42023

A vulnerability has been identified in ModelSim Simulation All versions, Questa Simulation All versions. The RSA white-box implementation in affected applications insufficiently protects the built-in private keys that are required to decrypt electronic intellectual property IP data in accordance...

Design/Logic Flaw

A vulnerability has been identified in ModelSim Simulation All versions, Questa Simulation All versions. The RSA white-box implementation in affected applications insufficiently protects the built-in private keys that are required to decrypt electronic intellectual property IP data in accordance...

ModelSim Simulation 安全漏洞

Questa and ModelSim simulators are used worldwide to simulate, debug, and verify integrated circuit designs, etc. ModelSim Simulation and Questa Simulation do not protect sufficient credentials, and the RSA white-box implementation in the affected application does not adequately protect the...

CVE-2021-42023

The CVE-2021-42023 entry covers Siemens ModelSim Simulation and Questa Simulation (all versions) where the RSA white-box implementation does not sufficiently protect built‑in private keys used to decrypt IP data per IEEE 1735. The underlying issue is insufficiently protected credentials (CWE-522)...

CVE-2021-42547

Insufficient Input Validation in the search functionality of Wordpress plugin Out-of-the-Box prior to 1.20.3 allows unauthenticated user to craft a reflected Cross-Site Scripting attack...