EUVD-2022-50804

Malicious code in bioql PyPI...

Database Performance Analyzer 跨站脚本漏洞

SolarWinds Database Performance Analyzer Dpa is a database performance analyzer from SolarWinds, Inc. It is used to monitor, diagnose, and resolve performance issues with many types of database instances. A cross-site scripting vulnerability exists in Database Performance Analyzer DPA version...

Database Performance Analyzer 安全漏洞

SolarWinds Database Performance Analyzer Dpa is a database performance analyzer from SolarWinds, Inc. It is used to monitor, diagnose, and resolve performance issues with many types of database instances. A security vulnerability exists in Database Performance Analyzer DPA version 2022.4 and...

CVE-2022-48091

Tramyardg hotel-mgmt-system version 2022.4 is vulnerable to Cross Site Scripting XSS via processupdateprofile.php...

CVE-2022-48091

Tramyardg hotel-mgmt-system version 2022.4 is vulnerable to Cross Site Scripting XSS via processupdateprofile.php...

PT-2023-15569 · Unknown · Tramyardg Hotel-Mgmt-System

Name of the Vulnerable Software and Affected Versions: Tramyardg hotel-mgmt-system version 2022.4 Description: The issue concerns a Cross Site Scripting XSS vulnerability. It can be exploited via the process update profile.php file. Recommendations: For Tramyardg hotel-mgmt-system version 2022.4,...

Hotel-Mgmt-System 跨站脚本漏洞

Hotel-Mgmt-System is a hotel management system. A security vulnerability exists in Hotel-Mgmt-System version 2022.4, which stems from its processupdateprofile.php component that allows attackers to implement cross-site scripting...

Hotel-Mgmt-System SQL注入漏洞

Hotel-Mgmt-System is a hotel management system. A security vulnerability in Tramyardg hotel-mgmt-system version 2022.4, which stems from its /app/dao/CustomerDAO.php allows attackers to implement SQL injection...

CVE-2022-47512

Sensitive information was stored in plain text in a file that is accessible by a user with a local account in Hybrid Cloud Observability HCO/ SolarWinds Platform 2022.4. No other versions are affected...

SolarWinds Platform 安全漏洞

SolarWinds Platform is a unified monitoring, observability, and service management platform from U.S.-based SolarWinds, Inc. A security vulnerability exists in SolarWinds Platform version 2022.4 that stems from sensitive information being stored in plain text in a file that can be accessed by a...

Design/Logic Flaw

An out-of-bounds write issue exists in the DGN file-reading procedure in the Drawings SDK Version 2022.4 and prior resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow attackers to cause a denial-of-service...

Input validation

An improper check for unusual or exceptional conditions issue exists within the parsing DGN files from Drawings SDK Version 2022.4 and prior resulting from the lack of proper validation of the user-supplied data. This may result in several of out-of-bounds problems and allow attackers to cause a...

CVE-2021-32952

An out-of-bounds write issue exists in the DGN file-reading procedure in the Drawings SDK Version 2022.4 and prior resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow attackers to cause a denial-of-service...

PT-2021-19982 · Unknown · Drawings Sdk

Name of the Vulnerable Software and Affected Versions: Drawings SDK versions prior to 2022.4 Description: An out-of-bounds write issue exists in the DXF file-recovering procedure due to the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated...