16 matches found
CVE-2026-6618 langgenius dify ApiBasedToolSchemaParser parser.py parse_openai_plugin_json_to_tool_bundle server-side request forgery
A flaw has been found in langgenius dify up to 1.13.3. This issue affects the function parseopenaipluginjsontotoolbundle of the file api/core/tools/utils/parser.py of the component ApiBasedToolSchemaParser. Executing a manipulation of the argument url can lead to server-side request forgery. The...
CVE-2025-15138
A flaw has been found in prasathmani TinyFileManager up to 2.6. Affected by this issue is some unknown functionality of the file tinyfilemanager.php. This manipulation of the argument fullpath causes path traversal. Remote exploitation of the attack is possible. The exploit has been published and...
PT-2025-37922
Name of the Vulnerable Software and Affected Versions: Megatek Communication System Azora Wireless Network Management versions through 20250916 Description: The software contains an SQL injection flaw due to improper neutralization of special elements used in an SQL command. This allows for SQL...
Linux Distros Unpatched Vulnerability : CVE-2023-2269
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in tableclear in drivers/md/dm-ioctl.c in the Linux...
Linux Distros Unpatched Vulnerability : CVE-2017-16537
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The imonprobe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service NULL pointer dereference a...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor announcement...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's announcement...
Client Details System SQL Injection Vulnerability
Client Details System is a management platform. A SQL injection vulnerability exists in Client Details System. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's announcement...
WordPress Plugin WP SMS Information Disclosure Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information disclosure vulnerabilit...
WordPress Plugin LWS Hide Login Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
WordPress Plugin Simple User Listing Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...
AMD Secure Processor和AMD System Management Unit 缓冲区错误漏洞
The AMD System Management Unit SMU and AMD Secure Processor ASP are both products of UltraMicroelectronics AMD, Inc.The AMD System Management Unit is a system management unit.The AMD Secure Processor is a standalone AMD Secure Processor is a standalone ARM Coretex-A5 chip. A security vulnerabilit...
Exploit for OS Command Injection in Secudos Domos
CVE-2020-14293 This vulnerablity was discovered and disclosed...
Exploit for Path Traversal in Inneo Startup_Tools
CVE-2020-15492 This vulnerablity was discovered and disclosed...
Orbis CMS 1.0.2 - Arbitrary File Upload Vulnerability
No description provided by source. 'Orbis CMS' Arbitrary Script Execution Vulnerability CVE-2010-4313 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Orbis CMS' filemanfileupload.php script that allows any authenticat...
Orbis CMS 1.0.2 - Arbitrary File Upload
'Orbis CMS' Arbitrary Script Execution Vulnerability CVE-2010-4313 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Orbis CMS' filemanfileupload.php script that allows any authenticated user to upload a PHP script and...