8 matches found
EUVD-2026-25590
Axios: Null Byte Injection via Reverse-Encoding in AxiosURLSearchParams...
curl: Incorrect Encoding Conversion in hostname results in indeterminate SSRF vulnerabilities
Vulnerability description not provided...
PT-2023-28288 · Unknown · Lockss-Daemon
Name of the Vulnerable Software and Affected Versions: lockss-daemon versions prior to 1.77.3 Description: The issue is related to post-Unicode normalization, which may allow bypass of intended access restrictions. This can occur when certain Unicode characters, such as U+1FEF, are converted to...
Argus Surveillance DVR 4.0 Weak Password Encryption
Exploit Title: Argus Surveillance DVR 4.0 - Weak Password Encryption Exploit Author: Salman Asad @deathflash1411 Date: 12.07.2021 Version: Argus Surveillance DVR 4.0 Tested on: Windows 7 x86 Build 7601 & Windows 10 Reference:...
PT-2020-6958 · Artifex +1 · Ghostscript +1
Name of the Vulnerable Software and Affected Versions: Artifex Ghostscript versions prior to 9.53.0 Description: The issue is related to an out-of-bounds write and use-after-free in the devices/vector/gdevtxtw.c component of Ghostscript, specifically affecting the txtwrite functionality. This...
[OST]French Canadian Keyboard not mapping properly to VDA from Mac
French Canadian special accent characters not displaying correctly when accessing a Windows 7 VDA from a Macclient device with Receiver for OSX 12.4. On a Mac with a French Canadian keyboard, the circumflex character ^ is not mapped as expected with Receiver Macversion 12 connecting to a Windows ...
Upload the file of trap II pure alphanumeric. swf is a vulnerability?- Vulnerability warning-the black bar safety net
0x00 background In a previous uploaded file trap , the author mentioned for flash cross-domain data hijacking,sometimes does not need us to upload a file. Because we can simply use the JSONP interface,the flash content is assigned to the callback to be used. Just like in the comments@Sogili...
Mozilla Firefox字符映射错误显示漏洞
BUGTRAQ ID: 41866 CVE ID: CVE-2010-1210 Firefox是一款流行的开源WEB浏览器。 一些8位编码包含有未定义的位置,映射到了U+FFFD。在显示的时候,可能不会显示紧随之后的字符。例如,windows-1253中的 '\xD1', '\xD2', '\xD3', 'xD4'序列应为U+3A1, U+FFFD, U+3A3, U+3A4(也就是字符串ΡΣΤ),但实际结果为U+3A1, U+FFFD, U+3A4,缺少了U+3A3字符(也就是ΡΤ字符串,缺少Σ)。 在某些站点上这可能导致跨站脚本问题,因为服务器上过滤掉了某些应显示的字符。 Mozil...