WordPress plugin ChatBot with AI code issue vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists in...

Design/Logic Flaw

A flaw was found in the Netfilter subsystem in the Linux kernel. The issue is in the nftbyteordereval function, where the code iterates through a loop and writes to the dst array. On each iteration, 8 bytes are written, but dst is an array of u32, so each element only has space for 4 bytes. That...

ZhiCms Code Issues Vulnerabilities

ZhiCms is a professional buy-worthy system of ZhiCms community. ZhiCms 4.0 before the version of the code problem vulnerability, the vulnerability stems from app/plug/controller/giftcontroller.php in the existence of unknown parts, through the parameter mylike lead to deserialization...

GTKWave code execution vulnerability (CNVD-2024-36928)

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A code execution vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to execute arbitrary code using a specially crafted .lxt2 file...

CVE-2023-41710

User-defined script code could be stored for a upsell related shop URL. This code was not correctly sanitized when adding it to DOM. Attackers could lure victims to user accounts with malicious script code and make them execute it in the context of a trusted domain. We added sanitization for this...

WordPress Plugin Gecka Terms Thumbnails Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin Gecka Terms Thumbnails has...

WordPress Plugin Page Builder: Live Composer Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in...

Beijing Baichuo Smart S150 Code Issue Vulnerability

The Beijing Baichuo Smart S150 is an Internet Behavior Management appliance from Beijing Baichuo, China. A code issue vulnerability exists in Beijing Baichuo Smart S150 Management Platform 20240101 and prior versions, which stems from a file upload vulnerability in webimg, a parameter of the HTTP...

Engineers Online Portal Code Issue Vulnerability

Engineers Online Portal is open source an online portal . It is developed using PHP, MySQL database, HTML, CSS, Javascript, jQuery, Ajax, Bootstrap and some other libraries. A code issue vulnerability exists in Engineers Online Portal version 1.0. An attacker could exploit this vulnerability to...

WordPress Plugin YITH WooCommerce Product Add-Ons Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin YITH...

WordPress Plugin Piotnet Forms Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists in...

Campcodes Beauty Salon Management System Code Issue Vulnerability

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes. A code issue vulnerability exists in Campcodes Beauty Salon Management System version 20230703, which stems from the file product-list.php that causes unrestricted uploads...

WordPress Plugin WP Mail Log Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

WordPress Plugin Job Manager & Career Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists in t...

Sql injection

A vulnerability has been found in code-projects Client Details System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/regester.php of the component HTTP POST Request Handler. The manipulation of the argument fname/lname/email/contact leads to sql...

PHPGurukul Online Notes Sharing System Code Issue Vulnerability

PHPGurukul Online Notes Sharing System is an online notes sharing system from PHPGurukul Inc. A code issue vulnerability exists in version 1.0 of the PHPGurukul Online Notes Sharing System that stems from allowing unrestricted uploads of any file...

WordPress theme Soledad code issue vulnerability

WordPress is a blogging platform developed in PHP by the WordPress Foundation. The platform supports personal blog sites on servers running PHP and MySQL.WordPress theme is a theme for WordPress. A code issue vulnerability exists in WordPress theme Soledad version 8.4.1 and prior versions, which...

increaseLiquidity/decreaseLiquidity Lack of slippage protection

Lines of code Vulnerability details Vulnerability details In ParticlePositionManager.mint, there is slippage protection by params.amount0Min / params.amount1Min But in increaseLiquidity, pool.mint will also be executed There is no slippage protection function increaseLiquidity uint256 tokenId,...

Modifying the loan term setting can default existing loans

Lines of code Vulnerability details Summary Protocol admins can modify the loan term settings. This action can inadvertently default existing loans created under different terms. Impact Positions in the Particle LAMM protocol are created for a configurable period of time, defined by the LOANTERM...

automad Code Issues Vulnerabilities

automad is a flat file content management system and template engine. A code issue vulnerability exists in automad 1.10.9 and earlier versions, which stems from a file upload vulnerability in the function upload of the file FileCollectionController.php...