712 matches found
GHSA-J9XP-92VC-559J SQL Injection in sequelize
Affected versions of sequelize are vulnerable to SQL Injection. The package fails to sanitize JSON path keys in the MariaDB and MySQL dialects, which may allow attackers to inject SQL statements and execute arbitrary SQL queries. Recommendation If you are using sequelize 5.x, upgrade to version...
PT-2019-3608 · Zingbox · Zingbox Inspector
Name of the Vulnerable Software and Affected Versions: Zingbox Inspector versions 1.293 and earlier Description: A security issue exists due to the failure to neutralize special elements in the network traffic handler. This could allow a remote attacker to intercept and modify software update...
CVE-2018-19855
UiPath Orchestrator before 2018.3.4 allows CSV Injection, related to the Audit export, Robot log export, and Transaction log export features...
PT-2019-13736 · Openemr · Openemr
Name of the Vulnerable Software and Affected Versions: OpenEMR versions prior to 5.0.2 Description: The issue allows SQL Injection in the interface/forms/eye mag/save.php file. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents...
CVE-2019-11627
gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling shell injection via a User ID...
PT-2019-12164 · Postgresql · Sequelize
Name of the Vulnerable Software and Affected Versions: Sequelize versions prior to 5.3.0 Description: The issue arises from the improper handling of backslashes in string literals, potentially allowing attackers to inject SQL statements. This is due to the PostgreSQL option standard conforming...
Apple Safari and Apple iOS Safari Reader Cross-Site Scripting Vulnerability
Apple Safari and Apple iOS are both products of Apple Inc. Apple Safari is a web browser that is the default browser that comes with the MacOSX and iOS operating systems. apple iOS is a suite of operating systems developed for mobile devices. safari Reader is one of the reader components. Safari...
CVE-2018-20645
PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field...
CVE-2018-19513
In Webgalamb through 7.0, log files are exposed to the internet with predictable files/logs/sqlerrorlog/YYYY-MM-DD-sqlerrorlog.log filenames. The log file could contain sensitive client data email addresses and also facilitates exploitation of SQL injection errors...
SUSE-SU-2018:3909-1 Security update for postgresql94
This update for postgresql94 to 9.4.19 fixes the following security issue: - CVE-2018-10915: libpq failed to properly reset its internal state between connections. If an affected version of libpq was used with 'host' or 'hostaddr' connection parameters from untrusted input, attackers could have...
UBUNTU-CVE-2018-10915
A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq was used with "host" or "hostaddr" connection parameters from untrusted input, attackers could bypass client-side...
CVE-2016-9902
The Pocket toolbar button, once activated, listens for events fired from it's own pages but does not verify the origin of incoming events. This allows content from other origins to fire events and inject content and commands into the Pocket context. Note: this issue does not affect users with e10...
apus.edu XSS vulnerability
Open Bug Bounty ID: OBB-457119 Description| Value ---|--- Affected Website:| apus.edu Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...
Posty 1.0 SQL Injection
======================================================== Posty SQL injection Authentication bypass Description : an attacker is able to inject malicious sql query to bypass the login page and login as normal user Proof of Concept : - http://localhost/login.php set username and password = PCS00442...
PT-2016-7433 · Moodle · Moodle
Name of the Vulnerable Software and Affected Versions: Moodle version 3.1.2 Description: The issue allows remote attackers to obtain sensitive information via unspecified vectors, related to a SQL Injection issue affecting the Administration panel function in the installation process component. T...
CVE-2016-7405
The qstr method in the PDO driver in the ADOdb Library for PHP before 5.x before 5.20.7 might allow remote attackers to conduct SQL injection attacks via vectors related to incorrect quoting...
MGASA-2016-0291 Updated phpmyadmin packages fix security vulnerability
In phpMyAdmin before 4.4.15.8, the decryption of the username/password is vulnerable to a padding oracle attack. The can allow an attacker who has access to a user's browser cookie file to decrypt the username and password. Also, the same initialization vector IV is used to hash the username and...
iUSB v1.2 iOS - Arbitrary Code Execution Vulnerability
Document Title: =============== iUSB v1.2 iOS - Arbitrary Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1374 Release Date: ============= 2014-12-10 Vulnerability Laboratory ID VL-ID: ==================================== 137...
UBUNTU-CVE-2014-3704
The expandArguments function in the database abstraction API in Drupal core 7.x before 7.32 does not properly construct prepared statements, which allows remote attackers to conduct SQL injection attacks via an array containing crafted keys...
Ecomat CMS Remote SQL Injection Vulnerability
No description provided by source. Vulnerability ID: HTB22390 Reference: http://www.htbridge.ch/advisory/sqlinjectionvulnerabilityinecomatcms.html Product: Ecomat CMS Vendor: Codefabrik GmbH Vulnerable Version: 5.0 and Probably Prior Versions Vendor Notification: 18 May 2010 Vulnerability Type: S...