Sylius code issue vulnerability

Sylius is an open source e-commerce platform based on the Symfony framework from the Polish company Sylius. Sylius suffers from a code issue vulnerability that could lead to existing token leakage and unauthorized password changes. No details of the vulnerability are currently available...

showdoc 代码问题漏洞

showdoc is open source a great tool for IT teams to share documents online. A code issue vulnerability exists in showdoc before 2.10.4, which stems from unrestricted file uploads...

Spatie Laravel Media Library Pro 代码问题漏洞

Spatie Laravel Media Library Pro is a UI component for laravel-medialibrary from Spatie Belgium. A security vulnerability exists in Spatie Laravel Media Library Pro 2.1.6, no information about the vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...

Sylius 代码问题漏洞

Sylius is an open source e-commerce platform based on the Symfony framework from the Polish company Sylius. Sylius suffers from a code issue vulnerability that could lead to existing token leakage and unauthorized password changes. No details of the vulnerability are currently available...

WordPress All-in-One WP Migration code issue vulnerability

WordPress is the Wordpress Foundation's set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress All-in-One WP Migration has a code issue vulnerability that can be exploited by attackers to upload PHP...

Apache Any23 code issue vulnerability

Apache Any23 is a library, Web service, and command-line tool from the Apache Foundation, USA. It can extract structured data in RDF format from a variety of Web documents.Any23 versions prior to 2.7 contain a code issue vulnerability that could be exploited by an attacker to interfere with an...

MariaDB code issue vulnerability

MariaDB is a free and open source database management system from the MariaDB Mariadb Foundation and a version of the MySQL branch that uses the Maria storage engine.A code issue vulnerability exists in MariaDB, which stems from the fact that the product allows certain SELECT statements to cause...

Wordline HIDCCEMonitorSVC code issue vulnerability

Wordline HIDCCEMonitorSVC is a secure payment and trusted transaction domain application from the French company Wordline.A code issue vulnerability exists in Wordline HIDCCEMonitorSVC, which stems from the fact that Wordline HIDCCEMonitorSVC contains an unquoted service path, which can be...

VMware Tools for Windows code issue vulnerability

Vmware VMware Tools for Windows is a set of Windows-based enhancement tools for VMWare virtual machines from Vmware, a VMware driver for enhancing virtual graphics and hard drive performance and synchronizing virtual machine and host clocks. for Windows is vulnerable to a code issue that could be...

Dolibarr code issue vulnerability

Dolibarr is an application. A modern software package that helps manage your organization's activities. a code issue vulnerability exists in Dolibarr that stems from a Business logic error in the product. No details of the vulnerability are currently available...

JetBrains TeamCity Code Issue Vulnerability (CNVD-2022-18626)

JetBrains TeamCity is a distributed build management and continuous integration tool from JetBrains Czech Republic. The tool provides continuous unit testing, code quality analysis, and build issue analysis reporting.JetBrains TeamCity has a code issue vulnerability that stems from the fact that...

JetBrains TeamCity Code Issue Vulnerability (CNVD-2022-18623)

JetBrains TeamCity is a distributed build management and continuous integration tool from JetBrains Czech Republic. The tool provides continuous unit testing, code quality analysis, and build issue analysis reports.JetBrains TeamCity has a code issue vulnerability that stems from the product's...

MODX Revolution code issue vulnerability

MODX Revolution is a PHP-based open source content management system CMS from the US company MODX. The system supports online collaboration, search engine optimization SEO, etc. MODX Revolution has a code issue vulnerability that can be exploited by attackers to execute arbitrary code by uploadin...

IBM MQ Appliance 代码问题漏洞

IBM MQ Appliance is an all-in-one appliance for rapid deployment of enterprise-class messaging middleware from IBM U.S.A. A code issue vulnerability exists in the IBM MQ Appliance, which stems from the IBM MQ appliance not invalidating a session after logging out, and could be exploited by an...

JetBrains TeamCity 代码问题漏洞

JetBrains TeamCity is a set of distributed build management and continuous integration tools from JetBrains Czech Republic. The tool provides continuous unit testing, code quality analysis, and build issue analysis reporting. JetBrains TeamCity is vulnerable to a code issue that could be exploite...

Xerte 代码问题漏洞

Xerte is an open source software from The Xerte Project community in the UK. Xerte is vulnerable to a code issue where a maliciously crafted php file can be uploaded via a project interface disguised as a language file to bypass upload filters. An attacker could exploit the vulnerability to...

showdoc code issue vulnerability

showdoc is an open source tool ideal for IT teams to share documents online. showdoc suffers from a code issue vulnerability that stems from unrestricted uploading of files with dangerous types. No details of the vulnerability are currently available...

Envoy 代码问题漏洞

Envoy is an open source distributed proxy server. Envoy suffers from a code issue vulnerability that stems from a crafted request crashing when a CONNECT request is sent to a JWT filter configured with regex matching in the affected version...

Google TensorFlow code issue vulnerability (CNVD-2022-14996)

Google TensorFlow is an end-to-end open source platform for machine learning from Google Google. Google Tensorflow is vulnerable to a code issue that stems from an undefined behavior in the QuantizedMaxPool implementation, where user-controlled input can trigger a reference binding to a null...

Google TensorFlow code issue vulnerability (CNVD-2022-11512)

Google TensorFlow is an end-to-end open source platform for machine learning from Google USA. Google Tensorflow is vulnerable to a code issue that could be exploited by an attacker to deny service by passing in parameters that would trigger a CHECK failure...