D-Link DIR-605L/DIR-618 formSetDDNS Function Access Control Error Vulnerability

The D-Link DIR-605L and D-Link DIR-618 are both a wireless router from China-based AUO D-Link. An Access Control Error vulnerability exists in the D-Link DIR-618 version 2.02 and DIR-605L version 3.02, which stems from improper access control of the file /goform/formSetDDNS, and can be exploited ...

PrestaShop SQL Injection Vulnerability (CNVD-2021-06534)

Prestashop is a set of open source e-commerce solutions from the United States Prestashop. The solution provides a variety of payment methods , short message alerts and product image scaling and other features . PrestaShop 1.7.7.0 suffers from a SQL injection vulnerability in which the source...

WordPress wp-google-map-plugin plugin cross-site request forgery vulnerability (CNVD-2019-28886)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-google-map-plugin plugin is a Google Maps plugin used in it. A cross-site request forgery vulnerability exists in th...

Foxit MobilePDF for iOS Denial of Service Vulnerability

Foxit MobilePDF for iOS is China's Foxit Foxit software company's a cross iOS-based platform for mobile devices to use the PDF document reader. A denial of service vulnerability exists in the iOS-based Foxit MobilePDF application prior to version 6.1, which stems from the program's inability to...

Jiangmin Antivirus Denial of Service Vulnerability (CNVD-2018-03297)

Jiangmin Antivirus is a set of online antivirus software from the Chinese Jiangmin Jiangmin New Technology Company. A security vulnerability exists in the KSysCall.sys driver file in Jiangmin Antivirus version 16.0.0.100, which is caused by the program failing to validate an input value of IOCtl...

Extreme Office 2017 v1.0.3.2 suffers from a denial of service vulnerability

Extreme Office is an independently controlled office learning software developed by Beijing Haiteng Times Technology Co. Extreme Writing 2017 can create, modify and edit doc, docx files. A denial of service vulnerability exists in Extreme Writing in Extreme Office when dealing with special docx...

ImageMagick Denial of Service Vulnerability (CNVD-2017-18362)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the 'WriteUILImage' function in the coders/uil.c file in ImageMagick versi...

Perl Local Elevation of Privilege Vulnerability

Perl is a free and powerful cross-platform programming language developed by American programmer Larry Wall. A security vulnerability exists in Perl. A local attacker can exploit this vulnerability by supplying specially crafted data to the XSLoader component to gain privileges on the target syst...

Adobe Flash Player ASLR Protection Bypass Vulnerability

Adobe Flash Player is a Flash file handling program. A security vulnerability exists in Adobe Flash Player that allows remote attackers to perform unauthorized operations by exploiting a vulnerability that bypasses the memory address randomization restriction in Flash heap memory. 64 of windows 7...