6574 matches found
CVE-2023-2942 Improper Input Validation in openemr/openemr
Improper Input Validation in GitHub repository openemr/openemr prior to 7.0.1...
Format string
Storing Passwords in a Recoverable Format in GitHub repository pimcore/customer-data-framework prior to 3.3.10...
CVE-2023-2881 Storing Passwords in a Recoverable Format in pimcore/customer-data-framework
Storing Passwords in a Recoverable Format in GitHub repository pimcore/customer-data-framework prior to 3.3.10...
Code injection
Code Injection in GitHub repository nilsteampassnet/teampass prior to 3.0.9...
CVE-2023-2845
Improper Access Control in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v1.1.0...
CVE-2023-2844 Authorization Bypass Through User-Controlled Key in cloudexplorer-dev/cloudexplorer-lite
Authorization Bypass Through User-Controlled Key in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v1.1.0...
CVE-2023-2844 Authorization Bypass Through User-Controlled Key in cloudexplorer-dev/cloudexplorer-lite
Authorization Bypass Through User-Controlled Key in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v1.1.0...
CVE-2023-2845
CVE-2023-2845 targets the GitHub repository cloudexplorer-dev/cloudexplorer-lite and affects versions prior to v1.1.0. The root cause is improper access control, which can allow unauthorized actions within the application (as noted by multiple sources). All sources consistently cite an access-con...
CVE-2023-31584
GitHub repository cu/silicon commit a9ef36 was discovered to contain a reflected cross-site scripting XSS vulnerability via the User Input field...
Cross site scripting
GitHub repository cu/silicon commit a9ef36 was discovered to contain a reflected cross-site scripting XSS vulnerability via the User Input field...
CVE-2023-2837
Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2...
Stack overflow
Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.2...
Null pointer dereference
NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.2.2...
CVE-2023-2840
NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.2.2...
CVE-2023-2609
NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.1531. Mitigation Untrusted vim scripts with -s scriptin are not recommended to run...
Sql injection
SQL Injection in GitHub repository unilogies/bumsys prior to 2.2.0...
CVE-2023-2832 SQL Injection in unilogies/bumsys
SQL Injection in GitHub repository unilogies/bumsys prior to 2.2.0...
CVE-2023-2832 SQL Injection in unilogies/bumsys
SQL Injection in GitHub repository unilogies/bumsys prior to 2.2.0...
CVE-2023-2832
CVE-2023-2832 concerns the Unilogies Bumsys project (unilogies/bumsys) with SQL injection in versions prior to 2.2.0. The vulnerability stems from building SQL queries by appending user-supplied values (customerId, empId, company_id) without proper quoting, leading to injection and potential dela...
CVE-2023-2832 SQL Injection in unilogies/bumsys
SQL Injection in GitHub repository unilogies/bumsys prior to 2.2.0...