CVE-2024-24575

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially causing a Denial ...

openBI Code Issues Vulnerabilities

openBI is a big data visualization solution from openBI, Inc. A code issue vulnerability exists in openBI 6.0.3 and earlier versions, which stems from the parameter outimgurl in the file application/controllers/User.php that causes deserialization...

TrueLayer.NET Code Issue Vulnerability

TrueLayer.NET is a .Net client for TrueLayer by TrueLayer UK. A code issue vulnerability exists in TrueLayer.NET. An attacker could use this vulnerability to gain control of the target URL of the HttpClient used in the API class...

WordPress plugin ChatBot with AI code issue vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists in...

Design/Logic Flaw

A flaw was found in the Netfilter subsystem in the Linux kernel. The issue is in the nftbyteordereval function, where the code iterates through a loop and writes to the dst array. On each iteration, 8 bytes are written, but dst is an array of u32, so each element only has space for 4 bytes. That...

ZhiCms Code Issues Vulnerabilities

ZhiCms is a professional buy-worthy system of ZhiCms community. ZhiCms 4.0 before the version of the code problem vulnerability, the vulnerability stems from app/plug/controller/giftcontroller.php in the existence of unknown parts, through the parameter mylike lead to deserialization...

GTKWave code execution vulnerability (CNVD-2024-36928)

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A code execution vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to execute arbitrary code using a specially crafted .lxt2 file...

CVE-2023-41710

User-defined script code could be stored for a upsell related shop URL. This code was not correctly sanitized when adding it to DOM. Attackers could lure victims to user accounts with malicious script code and make them execute it in the context of a trusted domain. We added sanitization for this...

WordPress Plugin Gecka Terms Thumbnails Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin Gecka Terms Thumbnails has...

Beijing Baichuo Smart S150 Code Issue Vulnerability

The Beijing Baichuo Smart S150 is an Internet Behavior Management appliance from Beijing Baichuo, China. A code issue vulnerability exists in Beijing Baichuo Smart S150 Management Platform 20240101 and prior versions, which stems from a file upload vulnerability in webimg, a parameter of the HTTP...

WordPress Plugin Page Builder: Live Composer Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in...

Engineers Online Portal Code Issue Vulnerability

Engineers Online Portal is open source an online portal . It is developed using PHP, MySQL database, HTML, CSS, Javascript, jQuery, Ajax, Bootstrap and some other libraries. A code issue vulnerability exists in Engineers Online Portal version 1.0. An attacker could exploit this vulnerability to...

WordPress Plugin YITH WooCommerce Product Add-Ons Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin YITH...

WordPress Plugin Job Manager & Career Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists in t...

WordPress Plugin WP Mail Log Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

WordPress Plugin Piotnet Forms Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists in...

Campcodes Beauty Salon Management System Code Issue Vulnerability

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes. A code issue vulnerability exists in Campcodes Beauty Salon Management System version 20230703, which stems from the file product-list.php that causes unrestricted uploads...

Sql injection

A vulnerability has been found in code-projects Client Details System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/regester.php of the component HTTP POST Request Handler. The manipulation of the argument fname/lname/email/contact leads to sql...

PHPGurukul Online Notes Sharing System Code Issue Vulnerability

PHPGurukul Online Notes Sharing System is an online notes sharing system from PHPGurukul Inc. A code issue vulnerability exists in version 1.0 of the PHPGurukul Online Notes Sharing System that stems from allowing unrestricted uploads of any file...

automad Code Issues Vulnerabilities

automad is a flat file content management system and template engine. A code issue vulnerability exists in automad 1.10.9 and earlier versions, which stems from a file upload vulnerability in the function upload of the file FileCollectionController.php...