CampCodes Computer Laboratory Management System 代码问题漏洞

CampCodes Computer Laboratory Management System is a computerized laboratory management system from CampCodes, Inc. A code issue vulnerability exists in CampCodes Computer Laboratory Management System version 1.0 due to an unrestricted upload of the parameter ephoto...

CampCodes Computer Laboratory Management System 代码注入漏洞

CampCodes Computer Laboratory Management System is a computer laboratory management system from CampCodes, Inc. A code injection vulnerability exists in CampCodes Computer Laboratory Management System version 1.0, which stems from the parameter slname being susceptible to cross-site scripting...

CVE-2024-54818

SourceCodester Computer Laboratory Management System 1.0 is vulnerable to Incorrect Access Control. via /php-lms/admin/?page=user/list...

CVE-2024-54818

SourceCodester Computer Laboratory Management System 1.0 is vulnerable to Incorrect Access Control. via /php-lms/admin/?page=user/list...

CVE-2024-54818

SourceCodester Computer Laboratory Management System 1.0 is vulnerable to Incorrect Access Control, exploitable via /php-lms/admin/?page=user/list. The CVE entry (CVE-2024-54818) is supported by multiple sources (NVD, Red Hat, CIRCL, CNNVD, CVE List, etc.). The underlying issue is improper access...

CVE-2024-54818

SourceCodester Computer Laboratory Management System 1.0 is vulnerable to Incorrect Access Control. via /php-lms/admin/?page=user/list...

Malicious code in tree-sitter-strings (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fbacf70d3997892f49d729cbc0db29837ec65744402a0ae0c62460813e7f254f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-12970

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in TUBITAK BILGEM Pardus OS My Computer allows OS Command Injection. This issue affects Pardus OS My Computer: before 0.7.2...

CVE-2024-12970 OS Command Injection in TUBITAK BILGEM's Pardus OS My Computer

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in TUBITAK BILGEM Pardus OS My Computer allows OS Command Injection. This issue affects Pardus OS My Computer: before 0.7.2...

CVE-2024-33059 Use After Free in Computer Vision

Memory corruption while processing frame command IOCTL calls...

CVE-2024-33059

CVE-2024-33059 involves memory corruption in Qualcomm chipsets caused by processing frame command IOCTL calls. Reported impact per metrics includes High confidentiality, integrity, and availability with Local, Low-Complexity, Low-Privileges requirements (no user interaction). No exploitation deta...

CVE-2024-33059 Use After Free in Computer Vision

Memory corruption while processing frame command IOCTL calls...

CVE-2024-33055

CVE-2024-33055 describes memory corruption occurring when invoking IOCTL calls to unmap DMA buffers in Qualcomm chipsets. Connected sources confirm the issue affects memory handling in the DMA buffer unmapping path and classify the impact at the memory-corruption level; several advisories referen...

CVE-2024-33055 Use After Free in Computer Vision

Memory corruption while invoking IOCTL calls to unmap the DMA buffers...

CVE-2024-33055 Use After Free in Computer Vision

Memory corruption while invoking IOCTL calls to unmap the DMA buffers...

CVE-2024-33041 Use of Out-of-range Pointer Offset in Computer Vision

Memory corruption when input parameter validation for number of fences is missing for fence frame IOCTL calls,...

TUBITAK BILGEM Pardus OS My Computer 操作系统命令注入漏洞

TUBITAK BILGEM Pardus OS My Computer is a UI from TUBITAK BILGEM for information and management of disks on a computer. An operating system command injection vulnerability exists in TUBITAK BILGEM Pardus OS My Computer versions prior to 0.7.2, which stems from improper neutralization of special...

Malicious code in lambda-demo (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 70fa7a653e95d7b948968c1605f557ae4f569e78a26d160f8768a44bca1b6f5b Any computer that has this package install...

Malicious code in ethereumvulncontracthandler (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e0487271e4934f2a50132c6a3c30213e5a7c8fa71aa50f9d743f14a4cd00cc67 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in babel-preset-app (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0c7766597c4e69a6b6b08fb89e552f8cff845299eb1b612ef107e5f3fcb96156 Any computer that has this package install...