MediaTek Chipsets 代码问题漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A code issue vulnerability exists in MediaTek Chipsets, which stems from the network HW module containing an uncaught exception that could cause the system to hang...

Acronis Cyber Protect Cloud Agent 代码问题漏洞

Acronis Cyber Protect Cloud Agent is a cloud agent from Acronis Switzerland. A code issue vulnerability exists in versions prior to Acronis Cyber Protect Cloud Agent 39378. An attacker could exploit the vulnerability to elevate privileges...

Acronis Cyber Protect Cloud Agent 代码问题漏洞

Acronis Cyber Protect Cloud Agent is a cloud agent from Acronis Switzerland. A code issue vulnerability exists in versions prior to Acronis Cyber Protect Cloud Agent 39378. An attacker could exploit the vulnerability to elevate privileges...

CVE-2024-57965

In axios before 1.7.8, lib/helpers/isURLSameOrigin.js does not use a URL object when determining an origin, and has a potentially unwanted setAttribute'href',href call. NOTE: some parties feel that the code change only addresses a warning message from a SAST tool and does not fix a vulnerability...

Postman 代码问题漏洞

Postman is an API platform for developers from US-based Postman. A code issue vulnerability exists in Postman version 11.20 and prior versions that stems from an untrusted search path...

Microsoft Excel 代码问题漏洞

Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A code issue vulnerability exists in Microsoft Excel. An attacker could exploit the vulnerability to bypass certain functionality...

Phoenix SecureCore 代码问题漏洞

Phoenix SecureCore is a computer based input/output system from Phoenix Contact Phoenix of Germany. A code issue vulnerability exists in Phoenix SecureCore that arises from an improperly checked exception or anomaly that allows input data manipulation...

bookstore 代码问题漏洞

bookstore is an e-commerce bookstore system by donglight individual developer. A code issue vulnerability exists in bookstore version 1.0, which originates from the pictureFile parameter of file src/main/java/org/zdd/bookstore/web/controller/admin/AdminBookController.java that can lead to...

SingMR HouseRent 代码问题漏洞

HouseRent is a house rental management system by Mr.W individual developer. It provides an auto-caching JWK-Set HTTP client. A code issue vulnerability exists in SingMR HouseRent version 1.0, which stems from the singleUpload/upload function in the file...

Crater 代码问题漏洞

Crater is an open source web and mobile application from Crater Invoice Open Source. It is used to track expenses, make payments and create professional invoices and estimates. Crater has a code issue vulnerability. An attacker exploiting this vulnerability could remotely execute commands...

Mysiteforme 代码问题漏洞

Mysiteforme is a permission management system for wangl1989 individual developers. A code issue vulnerability exists in Mysiteforme version 1.0, which stems from the parameter test in the file src/main/java/com/mysiteform/admin/service/ipl/LocalUploadServiceImpl that can lead to unrestricted...

GoCD 代码问题漏洞

GoCD is a continuous delivery server for GoCD open source. A code issue vulnerability exists in GoCD versions 16.7.0 through 24.4.0 that stems from an XML External Entity XXE injection vulnerability that allows abuse of the hidden/unused Configuration Repository feature...

tarzan-cms 代码问题漏洞

tarzan-cms is a JAVA version of a modern open source CMS management system with a new technology stack by the individual developer of taishan in China. A code issue vulnerability exists in tarzan-cms version 1.0.0, which stems from an incorrect manipulation of the parameter file that can lead to...

Delta Electronics DTM 代码问题漏洞

Delta Electronics DTM is a series of temperature controllers from Delta Electronics China. A code issue vulnerability exists in Delta Electronics DTM, which can be exploited by an attacker to execute arbitrary code...

Huawei HarmonyOS Code Issue Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a code issue vulnerability that stems from a null pointer dereference, which can be exploited by an attacker to affect...

Kanboard 代码问题漏洞

Kanboard is a suite of open source visual task board software from Kanboard Open Source. The software has the ability to customize the panels based on the business. A code issue vulnerability exists in versions of Kanboard prior to 1.2.43 that stems from the fact that sessions remain available ev...

SAP Adobe Document Service 代码问题漏洞

Adobe Document Service is a service provided by Adobe for processing documents, supporting PDF creation, editing and other functions. A code issue exists in Adobe Document Service that originates from a vulnerability that allows an attacker with administrator privileges to send a specially crafte...

Microsoft Muzic 代码问题漏洞

Microsoft Muzic is an American Microsoft Microsoft research program on AI music, which enhances music understanding and generation through deep learning and artificial intelligence. A code issue vulnerability exists in Microsoft Muzic. An attacker exploiting this vulnerability could remotely...

QNAP Systems QTS和QNAP Systems QuTS hero 代码问题漏洞

QNAP Systems QTS and QNAP Systems QuTS hero are both products of China Weilian Technology QNAP Systems.QNAP Systems QTS is an entry operating system.QNAP Systems QuTS hero is an operating system. A code issue vulnerability exists in QNAP Systems QTS prior to version 5.2.1.2930 build 20241025 and...

PostHog 代码问题漏洞

PostHog is an all-in-one open source platform from PostHog Open Source. A code issue vulnerability exists in PostHog that stems from a lack of proper validation of URIs before accessing resources. An attacker exploiting this vulnerability could gain access to sensitive information...