PCMan FTP Server 安全漏洞

PCMan FTP Server is an FTP server software that provides file transfer services. PCMan FTP Server suffers from a buffer overflow vulnerability that stems from the failure of the HOST Command Handler module to properly process input when handling a specific request. No detailed vulnerability detai...

The vulnerability of the software for providing secure remote access to data in the Palo Alto Networks GlobalProtect App, related to errors in processing input data, allows a malicious actor to elevate their privileges to a system-level level.

The vulnerability of the software for providing secure remote access to data in the Palo Alto Networks GlobalProtect App is related to errors in processing input data. Exploiting this vulnerability can allow attackers to elevate their privileges to a system-level level...

CVE-2024-13896

CVE-2024-13896 affects WP-GeSHi-Highlight for WordPress up to version 1.4.3. The plugin processes user-supplied input as a regular expression in wp_geshi_filter_replace_code(), which could trigger a Regular Expression Denial of Service (ReDoS). This is described in multiple connected records (inc...

The vulnerability of the ftruncate() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ftruncate function in the Linux operating system’s kernel is related to errors in the processing of input data during syntax analysis of code. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2024-53030

Memory corruption while processing input message passed from FE driver...

CVE-2024-57026

TawkTo Widget Version = 1.3.7 is vulnerable to Cross Site Scripting XSS due to processing user input in a way that allows JavaScript execution...

CVE-2024-57026

The CVE-2024-57026 entry concerns the TawkTo Widget, affected versions prior to or equal to 1.3.7, which are vulnerable to Cross Site Scripting (XSS) due to how user input is processed. This is the stated root cause and impact across connected sources (e.g., Red Hat, CVE listings, and PT Security...

SUSE SLES12 Security Update : libtasn1 (SUSE-SU-2025:0512-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0512-1 advisory. - CVE-2024-12133: the processing of input DER data containing a large number of SEQUENCE OF or SET OF elements takes quadratic time to complete...

The vulnerability of the Opigno Learning path CMS system’s Drupal module lies in errors during the processing of input data during syntax analysis of code. This allows attackers to execute arbitrary code.

The vulnerability of the Opigno Learning path CMS system’s Drupal component is related to errors in data processing during syntax analysis of code. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Advisory ROSA-SA-2025-2655

Software: webkit4 2.44.1 OS: ROSA-CHROME packageevrstring: webkit4-2.44.1-1 CVE-ID: CVE-2023-28198 BDU-ID: 2023-04538 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the macOS operating system WebKit web page display module is associated with a post-release exploit error. Exploitation of the...

Advisory ROSA-SA-2025-2572

software: squid 5.10 OS: ROSA-CHROME packageevrstring: squid-5.10-1 CVE-ID: CVE-2024-45802 BDU-ID: 2024-08860 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Squid proxy server is related to input processing errors. Exploitation of the vulnerability could allow an attacker acting remotely to cau...

The vulnerability of the Opigno CMS system’s module, related to errors in processing input data during syntax analysis of code, allows attackers to execute arbitrary code.

The vulnerability of the Opigno CMS system’s module is related to errors in data processing during syntax analysis of the code. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2024-40747

Various module chromes didn't properly process inputs, leading to XSS vectors...

CVE-2024-40747

Various module chromes didn't properly process inputs, leading to XSS vectors...

CVE-2024-40747 [20250101] - Core - XSS vectors in module chromes

Various module chromes didn't properly process inputs, leading to XSS vectors...

CVE-2024-40747 [20250101] - Core - XSS vectors in module chromes

Various module chromes didn't properly process inputs, leading to XSS vectors...

CVE-2024-40747

CVE-2024-40747 affects Joomla! core module chromes, where inputs are not properly processed, enabling cross-site scripting (XSS). The vulnerability is described across multiple feeds as applying to module chromes and is categorized with CVSS 3.1: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N, base score 6....

PT-2025-2597 · Google · Google Chrome

Name of the Vulnerable Software and Affected Versions: Google Chrome affected versions not specified Description: The issue arises from various module chromes not properly processing inputs, which leads to XSS vectors. This allows for potential cross-site scripting attacks. Recommendations: At th...

The vulnerability of the Adobe Experience Manager content and media data management system is related to errors in processing input data, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to errors in processing input data. Exploiting this vulnerability can allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the Webmin CGI request handler allows a hacker to execute arbitrary code with root privileges.

The vulnerability of the Webmin CGI request handler relates to errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with root privileges remotely...