16 matches found
CVE-2023-49330
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL Injection while getting aggregate report data...
EUVD-2023-52826
Malicious code in bioql PyPI...
CVE-2023-48793
Zoho ManageEngine ADAudit Plus through 7250 allows SQL Injection in the aggregate report feature...
CVE-2023-49330
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL Injection while getting aggregate report data...
CVE-2023-49330
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL Injection while getting aggregate report data...
CVE-2023-49330
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL Injection while getting aggregate report data...
CVE-2023-49330
Zoho ManageEngine ADAudit Plus versions below 7271 allows SQL Injection while getting aggregate report data...
CVE-2023-49330
CVE-2023-49330 concerns Zoho ManageEngine ADAudit Plus. Affected versions are those below build 7271, where the issue enables SQL injection when fetching aggregated report data. The root cause is unsafely handling aggregate-report data that allows injection, leading to potential data disclosure o...
CVE-2023-48793
Zoho ManageEngine ADAudit Plus through 7250 allows SQL Injection in the aggregate report feature...
ZOHO ManageEngine ADAudit Plus SQL Injection Vulnerability
ZOHO ManageEngine ADAudit Plus is used by ZOHO to simplify auditing, demonstrate compliance and detect threats. A SQL injection vulnerability exists in ZOHO ManageEngine ADAudit Plus prior to Build 7271, which stems from a vulnerability in the aggregate report feature that is susceptible to SQL...
CVE-2023-48793
Zoho ManageEngine ADAudit Plus through 7250 allows SQL Injection in the aggregate report feature...
Denial Of Service(DoS)
OpenDMARC is vulnerable to denial of service. An insecure null termination in the function opendmarcxmlparse can result in a one-byte heap overflow in opendmarcxml which allows an attacker to parse a specially crafted DMARC aggregate report...
Debian DLA-2639-1 : opendmarc security update
It was discovered that OpenDMARC, a milter implementation of DMARC, has improper null termination in the function opendmarcxmlparse that can result in a one-byte heap overflow in opendmarcxml when parsing a specially crafted DMARC aggregate report. This can cause remote memory corruption when a...
GLSA-202011-02 : OpenDMARC: Heap-based buffer overflow
The remote host is affected by the vulnerability described in GLSA-202011-02 OpenDMARC: Heap-based buffer overflow It was found that OpenDMARC did not properly handle DMARC aggregate reports. Impact : A remote attacker, by sending a specially crafted DMARC aggregate report, could possibly cause a...
Design/Logic Flaw
OpenDMARC through 1.3.2 and 1.4.x through 1.4.0-Beta1 has improper null termination in the function opendmarcxmlparse that can result in a one-byte heap overflow in opendmarcxml when parsing a specially crafted DMARC aggregate report. This can cause remote memory corruption when a '\0' byte...
UBUNTU-CVE-2020-12460
OpenDMARC through 1.3.2 and 1.4.x through 1.4.0-Beta1 has improper null termination in the function opendmarcxmlparse that can result in a one-byte heap overflow in opendmarcxml when parsing a specially crafted DMARC aggregate report. This can cause remote memory corruption when a '\0' byte...