EUVD-2025-29344

Malicious code in bioql PyPI...

HomeGallery 安全漏洞

HomeGallery is a self-hosted open source web gallery from HomeGallery Open Source. For browsing with tagged, mobile-friendly, and AI-driven image discovery. A security vulnerability exists in HomeGallery version 1.15.0 and earlier versions. An attacker could exploit this vulnerability to view...

PT-2023-27289 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software name or versions are mentioned in the provided descriptions. Description: The issue is related to a confused deputy in multiple functions, potentially allowing an attacker to view another user's images. This could lead to...

PT-2023-27288 · Google · Android

Name of the Vulnerable Software and Affected Versions: DialogFillUi.java affected versions not specified Description: The issue is related to a confused deputy in the setHeader of DialogFillUi.java, allowing an attacker to view another user's images. This could lead to local information disclosur...

PT-2023-27286 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software name or version is mentioned in the provided descriptions. Description: The issue is related to a confused deputy in the isFullScreen function of FillUi.java, which could allow viewing another user's images. This leads to...

Samsung Mobile Device Information Disclosure Vulnerability (CNVD-2020-32873)

Android is a free and open source operating system from Google based on the Linux kernel without GNU components. An information disclosure vulnerability exists in Samsung mobile devices, which can be exploited by an attacker to bypass the Secure Folder feature and view images...

CVE-2019-20580

An issue was discovered on Samsung mobile devices with P9.0 software. The Motion photo player allows attackers to bypass the Secure Folder feature to view images. The Samsung ID is SVE-2019-14653 August 2019...

D-Link DCS-1100 and D-Link DCS-1130 Cross-Site Request Forgery Vulnerabilities (CNVD-2019-23334)

The D-Link DCS-1100 and the D-Link DCS-1130 are both network cameras from Taiwan, China-based AUO D-Link. A cross-site request forgery vulnerability exists in the D-Link DCS-1100 and DCS-1130. An attacker can exploit the vulnerability by sending simple UDP packets to access the management interfa...

D-Link DCS-1100 and D-Link DCS-1130 Cross-Site Request Forgery Vulnerabilities (CNVD-2019-23338)

The D-Link DCS-1100 and the D-Link DCS-1130 are both network cameras from Taiwan, China-based AUO D-Link. A cross-site request forgery vulnerability exists in the D-Link DCS-1130 and DCS-1100 that stems from the program not performing authentication checks by default. An attacker could exploit th...

UBUNTU-CVE-2018-6053

Inappropriate implementation in New Tab Page in Google Chrome prior to 64.0.3282.119 allowed a local attacker to view website thumbnail images after clearing browser data via a crafted HTML page...

joomla component memorybook 1.2 - Multiple Vulnerabilities

No description provided by source. SQL Injection ------------- requires: magic quotes OFF, user account Add this as the description of a new event: ', 63,SELECT CONCATusername,0x20,email FROM users WHERE gid=25 LIMIT 1,1,1,1 -- ' NOTE: 63 MUST be your Joomla user ID. extracted info can be found o...

Joomla MemoryBook 1.2 SQL Injection / RFI

SQL Injection ------------- requires: magic quotes OFF, user account Add this as the description of a new event: ', 63,SELECT CONCATusername,0x20,email FROM users WHERE gid=25 LIMIT 1,1,1,1 -- ' NOTE: 63 MUST be your Joomla user ID. extracted info can be found on View Events page Remote File...

Joomla Component MemoryBook 1.2 Multiple Vulnerabilities

Exploit for unknown platform in category web applications ======================================================== Joomla Component MemoryBook 1.2 Multiple Vulnerabilities ======================================================== SQL Injection ------------- requires: magic quotes OFF, user account...

Joomla! Component memorybook 1.2 - Multiple Vulnerabilities

Joomla! Component memorybook 1.2 - Multiple Vulnerabilities SQL Injection ------------- requires: magic quotes OFF, user account Add this as the description of a new event: ', 63,SELECT CONCATusername,0x20,email FROM users WHERE gid=25 LIMIT 1,1,1,1 -- ' NOTE: 63 MUST be your Joomla user ID...

Joomla! Component memorybook 1.2 - Multiple Vulnerabilities

SQL Injection ------------- requires: magic quotes OFF, user account Add this as the description of a new event: ', 63,SELECT CONCATusername,0x20,email FROM users WHERE gid=25 LIMIT 1,1,1,1 -- ' NOTE: 63 MUST be your Joomla user ID. extracted info can be found on View Events page Remote File...

Joomla Component MemoryBook 1.2 Multiple Vulnerabilities

No description provided by source. SQL Injection ------------- requires: magic quotes OFF, user account Add this as the description of a new event: ', 63,SELECT CONCATusername,0x20,email FROM users WHERE gid=25 LIMIT 1,1,1,1 -- ' NOTE: 63 MUST be your Joomla user ID. extracted info can be found o...