48 matches found
EUVD-2014-2986
Malware in sbrugna...
EUVD-2014-2964
Malware in sbrugna...
EUVD-2023-1885
Malicious code in bioql PyPI...
EUVD-2023-0359
Malicious code in bioql PyPI...
CVE-2023-3308
A vulnerability classified as problematic has been found in whaleal IceFrog 1.1.8. Affected is an unknown function of the component Aviator Template Engine. The manipulation leads to deserialization. The exploit has been disclosed to the public and may be used. The identifier of this vulnerabilit...
CVE-2023-24163
SQL Inection vulnerability in Dromara hutool before 5.8.21 allows attacker to execute arbitrary code via the aviator template engine...
PT-2024-37773 · Zmops · Argusdbm
Name of the Vulnerable Software and Affected Versions: zmops ArgusDBM version 0.1.0 Description: A critical issue was found in the getDefaultClassLoader function of the CalculateAlarm.java file, part of the AviatorScript Handler component. This issue leads to deserialization and can be exploited...
PT-2024-14103 · Hertzbeat · Hertzbeat
Name of the Vulnerable Software and Affected Versions: Hertzbeat versions prior to 1.4.1 Description: Hertzbeat is a real-time monitoring system. In CalculateAlarm.java, AviatorEvaluator is used to directly execute the expression function, and no security policy is configured, resulting in...
Deserialization Of Untrusted Data
Whaleal IceFrog is vulnerable to Deserialization Of Untrusted Data. The vulnerability exists in the aviator Template Engine which can result in code injection...
Whaleal IceFrog is vulnerable to deserialization
Whaleal IceFrog v1.1.8 component Aviator Template Engine is vulnerable to deserialization of untrusted data. The application deserializes untrusted data without sufficiently verifying that the resulting data will be valid...
GHSA-RX62-5CW6-X29Q Whaleal IceFrog is vulnerable to deserialization
Whaleal IceFrog v1.1.8 component Aviator Template Engine is vulnerable to deserialization of untrusted data. The application deserializes untrusted data without sufficiently verifying that the resulting data will be valid...
CVE-2023-3308
A vulnerability classified as problematic has been found in whaleal IceFrog 1.1.8. Affected is an unknown function of the component Aviator Template Engine. The manipulation leads to deserialization. The exploit has been disclosed to the public and may be used. The identifier of this vulnerabilit...
CVE-2023-3308
A vulnerability classified as problematic has been found in whaleal IceFrog 1.1.8. Affected is an unknown function of the component Aviator Template Engine. The manipulation leads to deserialization. The exploit has been disclosed to the public and may be used. The identifier of this vulnerabilit...
Deserialization of untrusted data
A vulnerability classified as problematic has been found in whaleal IceFrog 1.1.8. Affected is an unknown function of the component Aviator Template Engine. The manipulation leads to deserialization. The exploit has been disclosed to the public and may be used. The identifier of this vulnerabilit...
CVE-2023-3308 whaleal IceFrog Aviator Template Engine deserialization
A vulnerability classified as problematic has been found in whaleal IceFrog 1.1.8. Affected is an unknown function of the component Aviator Template Engine. The manipulation leads to deserialization. The exploit has been disclosed to the public and may be used. The identifier of this vulnerabilit...
CVE-2023-3308
CVE-2023-3308 concerns whaleal IceFrog v1.1.8, where the vulnerability is in the Aviator Template Engine. The provided documents consistently describe a deserialization vulnerability in that component, enabling untrusted data to be deserialized within whaleal IceFrog. Exploitation is acknowledged...
CVE-2023-3308 whaleal IceFrog Aviator Template Engine deserialization
A vulnerability classified as problematic has been found in whaleal IceFrog 1.1.8. Affected is an unknown function of the component Aviator Template Engine. The manipulation leads to deserialization. The exploit has been disclosed to the public and may be used. The identifier of this vulnerabilit...
PT-2023-24173 · Unknown · Whaleal Icefrog +1
Name of the Vulnerable Software and Affected Versions: whaleal IceFrog version 1.1.8 Description: A problematic vulnerability has been found in the Aviator Template Engine component, leading to deserialization of untrusted data. The manipulation with this issue may be used since the exploit has...
whaleal IceFrog 代码问题漏洞
whaleal IceFrog is a small but comprehensive Java tool library from whaleal. A code issue vulnerability exists in whaleal IceFrog version 1.1.8, which stems from a problem with the component Aviator Template Engine that causes deserialization...
GHSA-6C25-CXCC-PMC4 Dromara hutool vulnerable to SQL Injection
SQL Inection vulnerability in Dromara hutool v5.8.11 allows attacker to execute arbitrary code via the aviator template engine...