Lucene search
K

6 matches found

EUVD
EUVD
added 2026/04/05 12:30 p.m.6 views

EUVD-2026-19069

A vulnerability was determined in Campcodes Complete POS Management and Inventory System up to 4.0.6. This affects an unknown function of the file app/Http/Controllers/SettingsController.php of the component Environment Variable Handler. Executing a manipulation can lead to injection. It is...

6.5CVSS6.3AI score0.00291EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/15 12:0 a.m.4 views

Slackware Linux 15.0 / current xpdf Multiple Vulnerabilities (SSA:2025-319-01)

The version of xpdf installed on the remote host is prior to 4.06. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2025-319-01 advisory. New xpdf packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the preceding...

8.2CVSS4.9AI score0.00391EPSS
Exploits2References14
OSV
OSV
added 2022/07/05 12:0 a.m.3 views

GHSA-P64X-8RXX-WF6Q Django `Trunc()` and `Extract()` database functions vulnerable to SQL Injection

An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc and Extract database functions are subject to SQL injection if untrusted data is used as a kind/lookupname value. Applications that constrain the lookup name and kind choice to a known safe list are unaffected...

9.8CVSS6.9AI score0.73274EPSS
Exploits3References15
Positive Technologies
Positive Technologies
added 2019/08/13 12:0 a.m.7 views

PT-2019-7663 · WordPress · All-In-One-Wp-Security-And-Firewall

Name of the Vulnerable Software and Affected Versions: all-in-one-wp-security-and-firewall plugin versions prior to 4.0.6 Description: The issue concerns a cross-site scripting XSS problem in the settings pages of the plugin. Recommendations: For versions prior to 4.0.6, update to version 4.0.6 o...

6.1CVSS5.9AI score0.00924EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/08/02 4:59 p.m.16 views

libtiff: out-of-bounds write in the tiff2rgba tool

Multiple integer overflows in the 1 cvtbystrip and 2 cvtbytile functions in the tiff2rgba tool in LibTIFF 4.0.6 and earlier, when -b mode is enabled, allow remote attackers to cause a denial of service crash or execute arbitrary code via a crafted TIFF image, which triggers an out-of-bounds write...

7.8CVSS7.8AI score0.03377EPSS
Exploits0References4
CNVD
CNVD
added 2016/04/12 12:0 a.m.12 views

Silicon Graphics LibTiff rgb2ycbcr Tool Denial of Service Vulnerability

Silicon Graphics LibTiff is a library for reading and writing TIFF Tagged Image File Format files from the U.S. company Silicon Graphics. The library contains a number of command-line tools to deal with TIFF files. A denial of service vulnerability exists in the 'cvtClump' function in the rgb2ycb...

7.5CVSS7.5AI score0.04055EPSS
Exploits1References1
Rows per page
Query Builder