6 matches found
CVE-2026-25236
CVE-2026-25236 affects the PEAR PHP framework. The vulnerability is a SQL injection risk in karma queries caused by unsafe literal substitution for an IN (...) list. Root cause: unsafe literal handling in Karma DAMBLAN-related queries prior to version 1.33.0. Impact: potential SQL injection. Miti...
Dell Update Package Framework Local Elevation of Privilege Vulnerability
Dell Update Package Framework is a framework for updating system components from Dell USA. The product focuses on providing installers for drivers, applications, BIOS, and firmware. The Dell Update Package Framework suffers from a local elevation of privilege vulnerability that originates from a...
CVE-2025-22395
Dell Update Package Framework, versions prior to 22.01.02, contains a Local Privilege Escalation Vulnerability. A local low privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary remote scripts on the server. Exploitation may lead to a denial of...
CVE-2025-22395
Dell Update Package Framework (DUPF) vulnerabilities affect versions prior to 22.01.02, with a Local Privilege Escalation that could allow a local, low-privilege attacker to execute arbitrary remote scripts on the server and potentially cause a denial of service. Root cause is local privilege esc...
Dell Update Package Framework 安全漏洞
Dell Update Package Framework is a framework for updating system components from Dell USA. The product focuses on providing installers for drivers, applications, BIOS, and firmware. The Dell Update Package Framework suffers from a local elevation of privilege vulnerability that originates from a...
Dell Update Package Framework Code Issue Vulnerability
Dell Update Package DUP Framework is a framework for updating system components from Dell USA. The product primarily provides installers for drivers, applications, BIOS, and firmware. A code issue vulnerability exists in the Dell DUP Framework file, which can be exploited by a local attacker to...