CVE-2025-29391

CVE-2025-29391 – horvey Library-Manager v1.0 is affected by a SQL Injection in Admin/Controller/BookController.class.php. The vulnerability stems from improper handling of input in the BookController, enabling attacker-controlled SQL execution. The CVSS v3.1 base score is 7.2 (HIGH) with network ...

The vulnerability of the Windows Package Library Manager component of the Microsoft Windows operating system allows a perpetrator to disclose protected information.

The vulnerability of the Windows Package Library Manager component of the Microsoft Windows operating system is related to a breach of data protection mechanisms. Exploiting this vulnerability could allow an attacker to disclose protected information...

CVE-2024-38203

Windows Package Library Manager Information Disclosure Vulnerability...

CVE-2024-38203

Technical details for CVE-2024-38203 are not publicly available in the supplied documents. No specifics on affected products, root cause, or remediation are provided here; monitor the feeds for updates from Microsoft and vulnerability trackers.

CVE-2024-38203 Windows Package Library Manager Information Disclosure Vulnerability

...

Windows Package Library Manager Information Disclosure Vulnerability

...

KLA77106 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code...

EMC AlphaStor Library Manager Arbitrary Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'EMC AlphaStor Library Manager Arbitrary Command Execution', 'Description' = %q EMC AlphaStor Library Manager is prone to a remote command-injecti...

CVE-2023-28627

pymedusa is an automatic video library manager for TV Shows. In versions prior 1.0.12 an attacker with access to the web interface can update the git executable path in /config/general/ advanced settings with arbitrary OS commands. An attacker may exploit this vulnerability to take execute...

CVE-2023-28627

CVE-2023-28627 affects pymedusa prior to 1.0.12. An attacker with access to the web interface can update the git executable path in /config/general/ > advanced settings, leading to arbitrary OS command execution as the pymedusa user. The vulnerability arises from allowing modification of the g...

November 2022 Patch Tuesday | Microsoft Releases 65 New Vulnerabilities with 10 Critical; Adobe Releases Zero Advisories (for the first time in six years).

Microsoft Patch Tuesday Summary Microsoft has fixed 65 new vulnerabilities aka flaws in the November 2022 update, including ten 10 vulnerabilities classified as Critical as they allow Denial of Service DoS, Elevation of Privilege EoP, and Remote Code Execution RCE. This months Patch Tuesday...

CVE-2019-13538

3S-Smart Software Solutions GmbH CODESYS V3 Library Manager, all versions prior to 3.5.16.0, allows the system to display active library content without checking its validity, which may allow the contents of manipulated libraries to be displayed or executed. The issue also exists for source...

CVE-2019-13538

3S-Smart Software Solutions GmbH CODESYS V3 Library Manager, all versions prior to 3.5.16.0, allows the system to display active library content without checking its validity, which may allow the contents of manipulated libraries to be displayed or executed. The issue also exists for source...

Code injection

3S-Smart Software Solutions GmbH CODESYS V3 Library Manager, all versions prior to 3.5.16.0, allows the system to display active library content without checking its validity, which may allow the contents of manipulated libraries to be displayed or executed. The issue also exists for source...

CVE-2019-13538

CVE-2019-13538 affects 3S-Smart Software Solutions GmbH CODESYS V3 Library Manager (all versions before 3.5.16.0). The vulnerability is an improper handling of active library content (CWE-79, cross-site scripting) that can cause manipulated library content to be displayed or executed. Connected s...

CVE-2019-13538

3S-Smart Software Solutions GmbH CODESYS V3 Library Manager, all versions prior to 3.5.16.0, allows the system to display active library content without checking its validity, which may allow the contents of manipulated libraries to be displayed or executed. The issue also exists for source...

EMC AlphaStor Library Manager 4.0 build 910 - Opcode 0x4f Buffer Overflow (Metasploit)

EMC AlphaStor Library Manager 4.0 build 910 - Opcode 0x4f Buffer Overflow Metasploit require 'msf/core' class MetasploitModule 'EMC AlphaStor Library Manager Opcode 0x4f', 'Description' = %q This module exploits a stack based buffer overflow found in EMC Alphastor Library Manager version 'james...

EMC AlphaStor Library Manager < 4.0 build 910 - Opcode 0x4f Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'EMC AlphaStor Library Manager Opcode 0x4f', 'Description' = %q This module exploits a stack based buffer overflow found in EMC Alphastor Library Manager version 'james fitts' , 'License' = MSFLICENSE, 'References' = 'URL',...

DmxReady Document Library Manager 1.2 - SQL Injection Vulnerability

No description provided by source. Exploit Title: DmxReady Document Library Manager v1.2 SQL Injection Vulnerability Google Dork: inurl:incdocumentlibrarymanager.asp Date: 03.07.2011 Author: Bellatrix Software Link: http://www.dmxready.com/?product=document-library-manager Version: v1.2 Language:...

EMC AlphaStor Library Manager 0x4f Command Remote Code Execution Vulnerability

This vulnerability potentially allows remote attackers to execute arbitrary code on vulnerable installations of EMC AlphaStor for EMC Networker. Authentication is not required to exploit this vulnerability. The specific flaw exists within Library Manager robotd.exe which listens by default on por...