JetBrains Runtime Code Issue Vulnerability

JetBrains Runtime JBR is a Czech JetBrains company based on OpenJDK designed specifically for JetBrains products runtime environment . Used to run JetBrains platform products , to provide an optimized Java running experience . JetBrains Runtime has a code issue vulnerability that originates from ...

LLaVA 代码问题漏洞

LLaVA is an application by the individual developer Haotian Liu. A code issue vulnerability exists in LLaVA version 1.2.0, which stems from insufficient validation of path parameters and could lead to a server-side request forgery attack...

Rembg 代码问题漏洞

Rembg is a tool for removing image backgrounds by the individual developer Daniel Gatis. A code issue vulnerability exists in Rembg version 2.0.57 and earlier, which stems from the /api/remove endpoint that allows images to be fetched, processed, and returned, potentially leading to information...

SourceCodester E-Learning System 代码问题漏洞

SourceCodester E-Learning System is a SourceCodester open source e-learning system. A code issue vulnerability exists in SourceCodester E-Learning System version 1.0, which stems from allowing unlimited file uploads...

IBM Cognos Controller 代码问题漏洞

IBM Cognos Controller is a suite of business intelligence and planning solutions from International Business Machines IBM. The product features process automation, financial audit control, and the creation and management of financial reports. A code issue vulnerability exists in IBM Cognos...

Palo Alto Networks Cortex XDR 代码问题漏洞

Palo Alto Networks Cortex XDR is an extended detection and response platform that natively integrates network, endpoint, cloud, and third-party data from Palo Alto Networks, USA. A code issue vulnerability exists in Palo Alto Networks Cortex XDR, which stems from a faulty detection mechanism that...

Intel Ethernet Adapter Complete Driver Pack 代码问题漏洞

Intel Ethernet Adapter Complete Driver Pack is a complete driver for Ethernet adapters from Intel Corporation. A code issue vulnerability exists in Intel Ethernet Adapter Complete Driver Pack versions prior to 29.1, which arises from an uncontrolled search path that could allow an authenticated...

Microsoft Visual Studio Code 代码问题漏洞

Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A code issue vulnerability exists in Microsoft Visual Studio Code. An attacker can exploit the vulnerability to elevate privileges...

Cisco Identity Services Engine Code Issue Vulnerability (CNVD-2025-03531)

Cisco Identity Services Engine is an environment-aware platform from the U.S. company Cisco Cisco. The Cisco Identity Services Engine API has a code issue vulnerability that can be exploited by a remote attacker to submit a special request that can execute arbitrary commands with elevated...

Acronis Cyber Protect Cloud Agent 代码问题漏洞

Acronis Cyber Protect Cloud Agent is a cloud agent from Acronis Switzerland. A code issue vulnerability exists in versions prior to Acronis Cyber Protect Cloud Agent 39378. An attacker could exploit the vulnerability to elevate privileges...

Microsoft Excel 代码问题漏洞

Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A code issue vulnerability exists in Microsoft Excel. An attacker could exploit the vulnerability to bypass certain functionality...

bookstore 代码问题漏洞

bookstore is an e-commerce bookstore system by donglight individual developer. A code issue vulnerability exists in bookstore version 1.0, which originates from the pictureFile parameter of file src/main/java/org/zdd/bookstore/web/controller/admin/AdminBookController.java that can lead to...

GoCD 代码问题漏洞

GoCD is a continuous delivery server for GoCD open source. A code issue vulnerability exists in GoCD versions 16.7.0 through 24.4.0 that stems from an XML External Entity XXE injection vulnerability that allows abuse of the hidden/unused Configuration Repository feature...

tarzan-cms 代码问题漏洞

tarzan-cms is a JAVA version of a modern open source CMS management system with a new technology stack by the individual developer of taishan in China. A code issue vulnerability exists in tarzan-cms version 1.0.0, which stems from an incorrect manipulation of the parameter file that can lead to...

Delta Electronics DTM 代码问题漏洞

Delta Electronics DTM is a series of temperature controllers from Delta Electronics China. A code issue vulnerability exists in Delta Electronics DTM, which can be exploited by an attacker to execute arbitrary code...

Huawei HarmonyOS Code Issue Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a code issue vulnerability that stems from a null pointer dereference, which can be exploited by an attacker to affect...

Kanboard 代码问题漏洞

Kanboard is a suite of open source visual task board software from Kanboard Open Source. The software has the ability to customize the panels based on the business. A code issue vulnerability exists in versions of Kanboard prior to 1.2.43 that stems from the fact that sessions remain available ev...

Microsoft Muzic 代码问题漏洞

Microsoft Muzic is an American Microsoft Microsoft research program on AI music, which enhances music understanding and generation through deep learning and artificial intelligence. A code issue vulnerability exists in Microsoft Muzic. An attacker exploiting this vulnerability could remotely...

Allegra 代码问题漏洞

Allegra is a project management software for mid-sized organizations from Allegra, Inc. Allegra suffers from a code issue vulnerability that stems from a lack of proper validation of user-supplied data. An attacker can exploit the vulnerability to execute arbitrary code...

PostHog 代码问题漏洞

PostHog is an all-in-one open source platform from PostHog Open Source. A code issue vulnerability exists in PostHog that stems from a lack of proper validation of URIs before accessing resources. An attacker exploiting this vulnerability could gain access to sensitive information...