5 matches found
CVE-2025-41715
The database for the web application is exposed without authentication, allowing an unauthenticated remote attacker to gain unauthorized access and potentially compromise it...
The vulnerability of the `createSessionInternal` function in the `PackageInstallerService.java` module of the Android operating system allows a hacker to access the database of any application.
The vulnerability of the createSessionInternal function in the PackageInstallerService.java module of the Android operating system is related to the lack of encapsulation around special characters in the name of the installer when it is written to /data/system/packages.list. Exploiting this...
Sql injection
SQL injection vulnerability in wuzhicms v.4.1.0 allows a remote attacker to execute arbitrary code via the Database Backup Functionality in the coreframe/app/database/admin/index.php component...
CVE-2023-46482
SQL injection vulnerability in wuzhicms v.4.1.0 allows a remote attacker to execute arbitrary code via the Database Backup Functionality in the coreframe/app/database/admin/index.php component...
PT-2022-6515 · Dell · Dell Supportassist For Business Pcs +1
Name of the Vulnerable Software and Affected Versions: Dell SupportAssist for Home PCs versions 3.11.4 and prior Dell SupportAssist for Business PCs versions 3.2.0 and prior Description: The issue is related to an information disclosure vulnerability. A local malicious user with low privileges...