CVE-2023-5136

An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. An attacker could exploit this vulnerability by getting a user to open a specially crafted data file...

CVE-2023-5136

An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. An attacker could exploit this vulnerability by getting a user to open a specially crafted data file...

Information disclosure

An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. An attacker could exploit this vulnerability by getting a user to open a specially crafted data file...

CVE-2023-5136

The connected advisories confirm a vulnerability in NI DIAdem GPX processing via the TopoGrafix DataPlugin for GPX. The root cause is an XML External Entity (XXE) handling flaw that allows a crafted GPX file to cause the XML parser to fetch and embed external content, leading to information discl...

CVE-2023-5136 Incorrect Permission Assignment in the TopoGrafix DataPlugin for GPX

An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. An attacker could exploit this vulnerability by getting a user to open a specially crafted data file...

CVE-2023-5136 Incorrect Permission Assignment in the TopoGrafix DataPlugin for GPX

An incorrect permission assignment in the TopoGrafix DataPlugin for GPX could result in information disclosure. An attacker could exploit this vulnerability by getting a user to open a specially crafted data file...

CLSA-2023-1693419791 Fix CVE(s): CVE-2022-40982, CVE-2023-23908, CVE-2022-41804

SECURITY UPDATE: New microcode data file 2023-08-08 - Updated microcodes: sig 0x00050653, pfmask 0x97, 2023-03-23, rev 0x1000181, size 36864 sig 0x00050654, pfmask 0xb7, 2023-03-06, rev 0x2007006, size 44032 sig 0x00050656, pfmask 0xbf, 2023-03-17, rev 0x4003604, size 38912 sig 0x00050657, pfmask...

CLSA-2023-1693419056 Fix CVE(s): CVE-2022-41804, CVE-2023-23908, CVE-2022-40982

SECURITY UPDATE: New microcode data file 2023-08-08 - Updated microcodes: sig 0x00050653, pfmask 0x97, 2023-03-23, rev 0x1000181, size 36864 sig 0x00050654, pfmask 0xb7, 2023-03-06, rev 0x2007006, size 44032 sig 0x00050656, pfmask 0xbf, 2023-03-17, rev 0x4003604, size 38912 sig 0x00050657, pfmask...

PT-2023-29578 · Unknown · Sourcecodester Inventory Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Inventory Management System version 1.0 Description: A critical vulnerability was found in the SourceCodester Inventory Management System. The issue affects an unknown functionality of the file staff data.php. The manipulation ...

CVE-2023-36281

An issue in langchain v.0.0.171 allows a remote attacker to execute arbitrary code via a JSON file to loadprompt. This is related to subclasses or a template...

PYSEC-2023-151

An issue in langchain v.0.0.171 allows a remote attacker to execute arbitrary code via the via the a json file to the loadprompt parameter...

CVE-2023-39419

A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 7. The affected applications contain an out of bounds write past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the...

CVE-2023-39186

A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 7. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the curre...

CVE-2023-4200

A vulnerability has been found in SourceCodester Inventory Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file productdata.php.. The manipulation of the argument columns1data leads to sql injection. The attack can be initiated remotely. The exploi...

CVE-2023-4199

A vulnerability, which was classified as critical, was found in SourceCodester Inventory Management System 1.0. This affects an unknown part of the file catagorydata.php. The manipulation of the argument columns1data leads to sql injection. It is possible to initiate the attack remotely. The...

Inventory Management System SQL Injection Vulnerability

Inventory Management System is an inventory management system by stemword individual developers. SourceCodester Inventory Management System version 1.0 suffers from a SQL injection vulnerability in the columns1data parameter of the catagorydata.php file...

PT-2023-28209 · Sourcecodester · Sourcecodester Inventory Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Inventory Management System version 1.0 Description: A critical issue has been found in the SourceCodester Inventory Management System, affecting the file product data.php. The manipulation of the columns1data argument leads to...

PT-2023-24185 · Code Projects · Agro-School Management System

Name of the Vulnerable Software and Affected Versions: code-projects Agro-School Management System version 1.0 Description: A critical issue has been found in the Agro-School Management System, affecting some unknown functionality of the file loaddata.php. The manipulation of the subject/course...

AD CS Certificate Template Management

This module can create, read, update, and delete AD CS certificate templates from a Active Directory Domain Controller. The READ, UPDATE, and DELETE actions will write a copy of the certificate template to disk that can be restored using the CREATE or UPDATE actions. The CREATE and UPDATE actions...

PT-2023-21296 · Sourcecodester · Sourcecodester Online Exam System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Exam System version 1.0 Description: A critical vulnerability was found in the SourceCodester Online Exam System, affecting unknown code of the file /kelasdosen/data. The manipulation of the argument columns1data leads t...