1431 matches found
Interinfo DreamMaker 代码问题漏洞
Interinfo DreamMaker is an application developed by Interinfo Corporation in China. Interinfo DreamMaker has a code vulnerability that stems from arbitrary file uploads. This vulnerability could allow unauthenticated remote attackers to upload and execute a Web shell backdoor, thereby enabling...
pam_usb 代码问题漏洞
pamusb is a Linux hardware authentication tool developed by McDope’s individual developer, based on USB devices. Versions of pamusb prior to 0.9.0 have code vulnerabilities. These vulnerabilities arise from assertions being compiled and removed during memory allocation failures, leading to null...
AI-Code-Vulnerability-Scanner
AI-Code-Vulnerability-Scanner The AI Code Vulnerability Scanne...
Microsoft Office SharePoint 代码问题漏洞
Microsoft Office SharePoint is an enterprise content collaboration and document management platform developed by Microsoft Corporation. There is a code vulnerability in Microsoft Office SharePoint, which stems from deserializing untrusted data, potentially allowing authorized attackers to execute...
Jaspersoft Reports Library 代码问题漏洞
Jaspersoft Reports Library is a Java report engine developed by Jaspersoft Corporation in the United States. It can generate reports in various formats such as PDF, HTML, Excel, and Word. There is a code vulnerability in Jaspersoft Reports Library, which stems from a Java deserialization issue...
Palo Alto Networks Trust Protection Foundation 代码问题漏洞
Palo Alto Networks Trust Protection Foundation is a machine identity and certificate security management platform provided by Palo Alto Networks. There is a code vulnerability in Palo Alto Networks Trust Protection Foundation, which stems from incorrect authorization. This vulnerability could all...
F5 BIG-IP 代码问题漏洞
F5 BIG-IP is an application delivery platform developed by F5 Corporation in the United States. It integrates functions such as network traffic management, application security management, and load balancing. There is a code vulnerability in F5 BIG-IP. This vulnerability arises when configuring...
changedetection.io 代码问题漏洞
changedetection.io is a website-based application developed by dgtlmoon, designed for code inspection, monitoring, and notification. Versions of changedetection.io prior to 0.54.9 contained a code vulnerability. This vulnerability stemmed from the xpathfilter function not disabling external entit...
VulTriage: Triple-Path Context Augmentation for LLM-Based Vulnerability Detection
Automated vulnerability detection is a fundamental task in software security, yet existing learning-based methods still struggle to capture the structural dependencies, domain-specific vulnerability knowledge, and complex program semantics required for accurate detection. Recent Large Language...
Argus Surveillance Dvr 代码问题漏洞
Argus Surveillance DVR is a general-purpose software for the security mixing platform developed by Argus Surveillance in the United States. It can work simultaneously with wireless and wired IP cameras, TV boards, capture cards, power lines, and USB cameras. Version 4.0 of Argus Surveillance DVR...
Argo Workflows 代码问题漏洞
Argo Workflows is an open-source container-native workflow engine for Kubernetes, part of the Argo project. Versions 4.0.0 to 4.0.5 of Argo Workflows had code vulnerabilities. These vulnerabilities stemmed from a null pointer dereferencing in the rbcAuthorization function in...
Linkwarden 代码问题漏洞
Linkwarden is a self-hosted collaborative bookmark manager developed by Linkwarden OpenSource. Versions of Linkwarden prior to 2.13.0 had code vulnerabilities. These vulnerabilities stemmed from insufficient URL validation in the fetchTitleAndHeaders function, which only checked the http:// or...
Tor 代码问题漏洞
Tor is a virtual tunnel network operated by the Tor Project organization. It allows individuals and groups to enhance their privacy and security on the Internet. Versions of Tor prior to 0.4.9.7 contained a code vulnerability caused by a null pointer dereferencing when the CERT unit received data...
Microsoft Azure Notification Service 代码问题漏洞
Microsoft Azure Notification Service is a notification delivery service provided by Microsoft Corporation in the United States. There is a code vulnerability in Microsoft Azure Notification Service, which stems from server-side request forgery. This vulnerability could allow authorized attackers ...
WatchGuard Agent 代码问题漏洞
WatchGuard Agent is a terminal security protection and device management agent provided by the American company WatchGuard. Versions of WatchGuard Agent prior to 1.25.03.0000 contained a code vulnerability caused by uncontrolled search path elements, which could lead to the use of malicious files...
Cisco IoT Field Network Director 代码问题漏洞
Cisco IoT Field Network Director is an end-to-end IoT management system developed by Cisco, Inc. This system offers features such as device management, asset tracking, and intelligent metering. There is a code vulnerability in Cisco IoT Field Network Director, which stems from insufficient file...
mutt 代码问题漏洞
Mutt is an open-source command-line email client for sending emails from the terminal. Versions of Mutt prior to 2.3.2 had code vulnerabilities, specifically a null pointer dereferencing issue in the showsigsummary function...
ASR Lapwing_Linux 代码问题漏洞
ASR LapwingLinux is a device firmware developed by ASR Corporation. ASR LapwingLinux has a code vulnerability that stems from a null pointer dereferencing in the imsclient module, which may lead to pointer-related issues...
eMPIA AVACAST 代码问题漏洞
eMPIA AVACAST is a USB video capture and encoding device developed by eMPIA in Taiwan, China. eMPIA AVACAST has a code vulnerability that stems from an unreferenced service path. This vulnerability could allow privileged local attackers to place malicious executable files in specific directories...
CVE-2026-7196
A security vulnerability has been detected in CodeAstro Online Classroom 1.0. Affected is an unknown function of the file /guestdetails. Such manipulation of the argument deleteid leads to sql injection. The attack may be performed from remote. The exploit has been disclosed publicly and may be...