Malicious code in facetjs-druid-requester (npm)

The package facetjs-druid-requester was found to contain malicious code...

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. A security vulnerability exists in Mattermost versions 10.5.5 and earlier, 10.5.x, 9.11.15 and earlier, 10.11.x, 10.8.0 and earlier, 10.8.x, 10.7.2 and earlier, 10.7.x, and 10.6.5 and earlier, 10.6.x,...

CVE-2025-45320

A Directory Listing Vulnerability was found in the /osms/Requester/ directory of the Kashipara Online Service Management Portal V1.0...

CVE-2025-45321

kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in /osms/Requester/Requesterchangepass.php via the parameter: rPassword...

Kashipara Online Service Management Portal 安全漏洞

Kashipara Online Service Management Portal is an online service management portal from Kashipara. A security vulnerability exists in Kashipara Online Service Management Portal version V1.0, which stems from improper handling of the rPassword parameter in the /osms/Requester/Requesterchangepass.ph...

Kashipara Online Service Management Portal 安全漏洞

Kashipara Online Service Management Portal is an online service management portal from Kashipara. A security vulnerability exists in Kashipara Online Service Management Portal version V1.0, which stems from mishandling of the /osms/Requester/ directory, which could lead to disclosure of directory...

The vulnerability of RDMA/rxe components of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of RDMA/rxe components of the Linux operating system is related to the execution of a loop with an unreachable exit condition in the function rxerequester. Exploiting this vulnerability can allow a attacker to cause a service failure...

CVE-2025-2037

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /userdashboard/deleterequester.php. The manipulation of the argument requesterid leads to sql injection. The attack can be initiated...

Code-Projects Blood Bank Management System 注入漏洞

Code-Projects Blood Bank Management System is an open source blood bank management system from Code-Projects. An injection vulnerability exists in Code-Projects Blood Bank Management System version 1.0, which stems from an incorrect manipulation of the parameter requesterid that can lead to SQL...

CVE-2024-12123 Unauthorized Modification of Ticket Requester

A hidden field manipulation vulnerability was identified in Issuetrak version 17.1 that could be triggered by an authenticated user. When an authenticated user submits a ticket, the request can be intercepted and subsequently modified by using a proxy. The ticket requester can be changed from the...

CVE-2024-12123

CVE-2024-12123 affects Issuetrak v17.1. A hidden field manipulation flaw allows an authenticated user submitting a ticket to have the request intercepted and modified via a proxy, changing the ticket requester to another user in the same application, which the app accepts. The issue is described ...

wildfly-security-manager: security manager authorization bypass

A flaw was found in Wildfly Security Manager, running under JDK 11 or 8, that authorized requests for any requester. This flaw could be used by a malicious app deployed on the app server to access unauthorized information and possibly conduct further attacks...

Malicious code in api-requester2 (PyPI)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-4770 Malicious code in api-requester2 (PyPI)

--- -= Per source details. Do not edit below this line.=-...

Hakuin - A Blazing Fast Blind SQL Injection Optimization And Automation Framework

Hakuin is a Blind SQL Injection BSQLI optimization and automation framework written in Python 3. It abstracts away the inference logic and allows users to easily and efficiently extract databases DB from vulnerable web applications. To speed up the process, Hakuin utilizes a variety of optimizati...

PT-2024-26118 · Unknown · Createwiki

Name of the Vulnerable Software and Affected Versions: CreateWiki affected versions not specified Description: The issue allows users to be considered as the requester of a specific wiki request if their local user ID on any wiki in a wiki farm matches the local ID of the requester at the wiki...

PT-2025-40681

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel’s RDMA/rxe component where incomplete state saving in the rxe requester function can lead to corrupted resent packets under heavy stress testing...

Input validation

libspdm is a sample implementation that follows the DMTF SPDM specifications. Prior to versions 2.3.3 and 3.0, following a successful CAPABILITIES response, a libspdm Requester stores the Responder's CTExponent into its context without validation. If the Requester sends a request message that...

MAL-2022-5377 Malicious code in plywood-clickhouse-requester (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d749af061ec8b1d350c3b326fe3b7a722430d03538a5196d7c59bcaa919f8ccc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in plywood-clickhouse-requester (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d749af061ec8b1d350c3b326fe3b7a722430d03538a5196d7c59bcaa919f8ccc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...