CVE-2025-11082 affecting package crash for versions less than 8.0.4-5

CVE-2025-11082 affecting package crash for versions less than 8.0.4-5. An upgraded version of the package is available that resolves this issue...

MongoDB Server 安全漏洞

MongoDB Server is a set of open source NoSQL databases from the American company MongoDB. The database provides collection-oriented storage, dynamic querying, data replication and automatic failover. A security vulnerability exists in MongoDB Server versions prior to v6.0 6.0.21, v7.0 7.0.17, and...

PT-2024-27748 · Ai3 · Ai3 Qbibot

Name of the Vulnerable Software and Affected Versions: Ai3 QbiBot versions prior to 8.0.4 Description: The issue concerns the file upload functionality, which does not properly restrict the types of files that can be uploaded. This allows remote attackers with administrator privileges to upload...

CVE-2019-17312

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows directory traversal in the file function by a Regular user...

CVE-2019-17308

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows PHP code injection in the Emails module by a Regular user...

CVE-2019-17296

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the Contacts module by a Regular user...

Atlassian JIRA Information Disclosure Vulnerability (CNVD-2019-15739)

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A security vulnerability exists in the CachingResourceDownloadRewriteRule class in Atlassian Jira versions prior to 7.13.4, prio...

Apple Safari WebKit Memory Corruption Vulnerability (CNVD-2015-01852)

WebKit is the open source web browser engine currently used by Safari, Chrome and other browsers. A security vulnerability in the WebKit user interface in Apple Safari versions prior to 6.2.4, 7.x versions prior to 7.1.4, and 8.x versions prior to 8.0.4 allows remote attackers to execute arbitrar...