17 matches found
SUSE CVE-2026-7111
Text::CSVXS versions before 1.62 for Perl have a use-after-free when registered callbacks extend the Perl argument stack, which may enable type confusion or memory corruption. The Parse, print, getline, and getlineall methods invoke registered callbacks for example afterparse, beforeprint, or...
CVE-2026-7111
Text::CSVXS versions before 1.62 for Perl have a use-after-free when registered callbacks extend the Perl argument stack, which may enable type confusion or memory corruption. The Parse, print, getline, and getlineall methods invoke registered callbacks for example afterparse, beforeprint, or...
Text-CSV_XS 资源管理错误漏洞
Text-CSVXS is a CSV file parsing and generation tool developed by CPAN authors under open source. Versions of Text-CSVXS prior to 1.62 contained a resource management vulnerability. This vulnerability stemmed from the use of the Perl parameter stack during registration callback extensions; reusin...
CVE-2023-40920
Prixan prixanconnect up to v1.62 was discovered to contain a SQL injection vulnerability via the component CartsGuruCatalogModuleFrontController::importProducts...
PT-2023-27700 · Unknown · Prixan Prixanconnect
Name of the Vulnerable Software and Affected Versions: Prixan prixanconnect versions up to v1.62 Description: The issue is related to a SQL injection vulnerability via the component CartsGuruCatalogModuleFrontController::importProducts. This vulnerability allows for the injection of malicious SQL...
Stack-based buffer overflow vulnerability in Yokogawa Test & Measurement WTViewerE
Overview WTViewerE provided by Yokogawa Test & Measurement Corporation contains a stack-based buffer overflow vulnerability CWE-121. Michael Heinzl reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the developer. Impact Processing a long file name may cause the product to crash...
GHSA-HVMX-5HV4-F235 Sandbox bypass vulnerability in Jenkins Script Security Plugin
A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62 and earlier related to the handling of property names in property expressions on the left-hand side of assignment expressions allowed attackers to execute arbitrary code in sandboxed scripts...
jenkins-script-security-plugin: handling of property names in property expressions in increment and decrement expressions allowed attackers to execute arbitrary code in sandboxed scripts
A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62 and earlier related to the handling of property names in property expressions in increment and decrement expressions allowed attackers to execute arbitrary code in sandboxed scripts...
jenkins-script-security-plugin: handling of property names in property expressions on the left-hand side of assignment expression leads to execute arbitrary code in sandboxed scripts
A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62 and earlier related to the handling of property names in property expressions on the left-hand side of assignment expressions allowed attackers to execute arbitrary code in sandboxed scripts...
jenkins-script-security-plugin: handling of method names in method call expressions allowed attackers to execute arbitrary code in sandboxed scripts
A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62 and earlier related to the handling of method names in method call expressions allowed attackers to execute arbitrary code in sandboxed scripts...
jenkins-script-security-plugin: handling of method names in method call expressions allowed attackers to execute arbitrary code in sandboxed scripts
A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.62 and earlier related to the handling of method names in method call expressions allowed attackers to execute arbitrary code in sandboxed scripts...
CloudBees Jenkins Script Security plugin sandbox bypass vulnerability
CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Script Security Plugin is used in one of the...
PT-2019-11787 · Jenkins · Jenkins Script Security Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Script Security Plugin versions 1.62 and earlier Description: A sandbox bypass issue related to the handling of method names in method call expressions allows attackers to execute arbitrary code in sandboxed scripts. Recommendations:...
AuraCMS (pfd.php) SQL Injection Vulnerability
No description provided by source. ----------------------------------------------------------------------- AuraCMS pfd.php SQL Injection Vulnerability ----------------------------------------------------------------------- Author : Arianom [email protected] Homepage :...
AuraCMS 1.62 - 'pdf.php' SQL Injection Vulnerability
AuraCMS 1.62 'pdf.php' SQL Injection Vulnerability. Webapps exploit for php platform source: http://www.securityfocus.com/bid/45003/info AuraCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this...
WowBB view_user.php SQL Injection Vulnerability
An attacker can exploit this vulnerability to gain admin username and password. http://www.wowbb.com/ Vulnerable versions: 1.6 1.61 1.62 Proof of concept: http://www.example.com/wowbb/viewuser.php?list=1&letter=&sortby='SQL Injection...
Detectoid for AzureConnectMachineAgent 1.62 - March 2026 Update
Detectoid for AzureConnectMachineAgent 1.62 - March 2026 Update...