12 matches found
EUVD-2019-5656
Malware in sbrugna...
CVE-2019-14471
TestLink 1.9.19 has XSS via the error.php message parameter...
WordPress plugin BigBuy Dropshipping Connector for WooCommerce 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
CVE-2024-45508
HTMLDOC before 1.9.19 has an out-of-bounds write in parseparagraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node...
HTMLDOC 安全漏洞
HTMLDOC is an open source program by Michael R Sweet, an individual developer, that converts HTML and Markdown files to EPUB, Indexed HTML, PostScript, and PDF format files. A security vulnerability exists in HTMLDOC versions prior to 1.9.19, which stems from an out-of-bounds write in the...
PT-2024-31668 · Htmldoc +3 · Htmldoc +3
Name of the Vulnerable Software and Affected Versions: HTMLDOC versions prior to 1.9.19 Description: The issue is related to an out-of-bounds write in the parse paragraph function in ps-pdf.cxx due to an attempt to strip leading whitespace from a whitespace-only node. This flaw can lead to a...
PT-2024-18098 · WordPress · The Academy Lms
Name of the Vulnerable Software and Affected Versions: The Academy LMS – eLearning and online course solution for WordPress plugin versions up to, and including, 1.9.19 Description: The issue is related to privilege escalation due to the plugin allowing arbitrary user meta updates through the sav...
Samba 1.9.18 Elevate Privileges Vulnerability (CVE-1999-1288)
Samba is prone to a elevate privileges vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
TestLink SQL Injection Vulnerability
TestLink is a set of open source software for managing the software testing process and providing statistical analysis. A SQL injection vulnerability exists in TestLink version 1.9.19. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based...
CVE-2019-19491
TestLink 1.9.19 has XSS via the lib/testcases/archiveData.php edit parameter, the index.php reqURI parameter, or the URI in a lib/testcases/tcEdit.php?doAction=doDeleteStep request...
Cross site request forgery (csrf)
The icegram plugin before 1.9.19 for WordPress has CSRF via the wp-admin/edit.php optionname parameter...
PT-2019-7755 · WordPress · Icegram
Name of the Vulnerable Software and Affected Versions: icegram plugin versions prior to 1.9.19 Description: The issue concerns a CSRF vulnerability via the option name parameter in the "wp-admin/edit.php" endpoint. This allows for potential unauthorized actions. Recommendations: For versions prio...