Lucene search
K

8 matches found

OSV
OSV
added 2026/06/18 2:32 p.m.2 views

SUSE-SU-2026:22213-1 Security update for unbound

This update for unbound fixes the following issues - CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. - CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. - CVE-2026-40622: "Ghost domain name" variant bsc1265581. - CVE-2026-41292: Parsing a long list of...

10CVSS6.5AI score0.01272EPSS
Exploits0References23
OSV
OSV
added 2024/07/21 4:15 a.m.4 views

CVE-2024-6937

A vulnerability, which was classified as problematic, was found in formtools.org Form Tools 3.1.1. Affected is the function curlexec of the file /admin/forms/optionlists/edit.php of the component Import Option List. The manipulation of the argument url leads to file inclusion. It is possible to...

2.7CVSS4.9AI score0.00368EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/07/21 4:0 a.m.26 views

CVE-2024-6937 formtools.org Form Tools Import Option List edit.php curl_exec file inclusion

A vulnerability, which was classified as problematic, was found in formtools.org Form Tools 3.1.1. Affected is the function curlexec of the file /admin/forms/optionlists/edit.php of the component Import Option List. The manipulation of the argument url leads to file inclusion. It is possible to...

5.1CVSS0.00368EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/07/21 4:0 a.m.18 views

CVE-2024-6937 formtools.org Form Tools Import Option List edit.php curl_exec file inclusion

A vulnerability, which was classified as problematic, was found in formtools.org Form Tools 3.1.1. Affected is the function curlexec of the file /admin/forms/optionlists/edit.php of the component Import Option List. The manipulation of the argument url leads to file inclusion. It is possible to...

5.1CVSS6.8AI score0.00368EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/07/21 12:0 a.m.5 views

PT-2024-37975 · Unknown · Form Tools

Name of the Vulnerable Software and Affected Versions: Form Tools version 3.1.1 Description: A problematic issue was found in the Import Option List component, specifically affecting the curl exec function in the /admin/forms/option lists/edit.php file. The manipulation of the url argument leads ...

5.1CVSS4.2AI score0.00368EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2023/12/15 3:13 a.m.10 views

Cross-site Scripting in @spscommerce/ds-react

Impact XSS, anyone using the SPS Select with options prop populated from user input is impacted. If these options are stored, then it could have been a stored XSS. Patches The code has been patched for version 7 of woodland. Users should upgrade to 7.17.4 or higher Workarounds This is not...

7AI score
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.3 views

SUSE CVE-2017-2630

A stack buffer overflow flaw was found in the Quick Emulator QEMU before 2.9 built with the Network Block Device NBD client support. The flaw could occur while processing server's response to a 'NBDOPTLIST' request. A malicious NBD server could use this issue to crash a remote NBD client resultin...

8.8CVSS9.8AI score0.02647EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2017/08/01 4:4 p.m.5 views

Qemu: nbd: oob stack write in client routine drop_sync

A stack buffer overflow flaw was found in the Quick Emulator QEMU built with the Network Block Device NBD client support. The flaw could occur while processing server's response to a 'NBDOPTLIST' request. A malicious NBD server could use this issue to crash a remote NBD client resulting in DoS or...

8.8CVSS7.7AI score0.02647EPSS
Exploits0References4
Rows per page
Query Builder