[SECURITY] Fedora 43 Update: CuraEngine-5.4.0-10.fc43

CuraEngine is a C++ console application for 3D printing G-code generation. It has been made as a better and faster alternative to the old Skeinforge engine. This is just a console application for G-code generation. For a full graphical application look at cura with is the graphical frontend for...

Microsoft MapUrlToZone 缓冲区错误漏洞

Microsoft MapUrlToZone is a lightweight console application written in C++ from Microsoft Corporation USA. A buffer error vulnerability exists in Microsoft MapUrlToZone, which can be exploited by an attacker to obtain sensitive information...

EUVD-2025-16559

Malicious code in bioql PyPI...

CVE-2025-5379

A vulnerability classified as critical was found in NuCom NC-WR744G 8.5.5 Build 20200530.307. This vulnerability affects unknown code of the component Console Application. The manipulation of the argument CMCCAdmin/useradmin/CUAdmin leads to hard-coded credentials. The attack can be initiated...

CVE-2025-5379

A vulnerability classified as critical was found in NuCom NC-WR744G 8.5.5 Build 20200530.307. This vulnerability affects unknown code of the component Console Application. The manipulation of the argument CMCCAdmin/useradmin/CUAdmin leads to hard-coded credentials. The attack can be initiated...

CVE-2025-5379

CVE-2025-5379 affects NuCom NC-WR744G, version 8.5.5 Build 20200530.307, specifically the Console Application where the CMCCAdmin/useradmin/CUAdmin argument is manipulated, leading to hard-coded credentials. This vulnerability can be exploited remotely; multiple sources confirm the issue but do n...

CVE-2025-5379 NuCom NC-WR744G Console Application hard-coded credentials

A vulnerability classified as critical was found in NuCom NC-WR744G 8.5.5 Build 20200530.307. This vulnerability affects unknown code of the component Console Application. The manipulation of the argument CMCCAdmin/useradmin/CUAdmin leads to hard-coded credentials. The attack can be initiated...

PT-2025-23404 · Nucom · Nucom Nc-Wr744G

Name of the Vulnerable Software and Affected Versions: NuCom NC-WR744G version 8.5.5 Build 20200530.307 Description: A critical vulnerability was found in the Console Application component of the affected software. The issue involves the manipulation of the CMCCAdmin/useradmin/CUAdmin argument,...

CRLF Injection in RestSharp's `RestRequest.AddHeader` method

Summary The second argument to RestRequest.AddHeader the header value is vulnerable to CRLF injection. The same applies to RestRequest.AddOrUpdateHeader and RestClient.AddDefaultHeader. Details The way HTTP headers are added to a request is via the HttpHeaders.TryAddWithoutValidation method: This...

io.antmedia.app:ConsoleApp (>=1.2.0 <=1.5.0), io.antmedia.app:LiveApp (>=1.2.0 <=1.8.1) +8 more potentially affected by CVE-2024-3462 via io.antmedia:ant-media-server (>=1.2.0 <=2.9.0)

io.antmedia:ant-media-server MAVEN version =1.2.0, =1.2.0, =1.2.0, =1.6.1, =2.15.0, =2.9.0, =2.14.0, =2.9.0, =2.6.1, =1.9.0, =1.2.0, =1.8.1 Source cves: CVE-2024-3462 Source advisory: OSV:GHSA-G95V-3PJ6-J433...

Debian dla-3493 : php-symfony - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3493 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3493-1 [email protected]...

CVE-2022-24894

Mode C: CVE-2022-24894 affects Symfony (PHP framework) where the HTTP cache system can inadvertently store a response containing a Set-Cookie header and serve it to subsequent clients. Root cause: a change in AbstractSessionListener allows the response to include Set-Cookie when HTTP caching is e...

nodau SQL注入漏洞

nodau is a simple console-based note-taking program by the individual developer TicklishHoneyBee. A security vulnerability exists in nodau, which stems from the fact that incorrect manipulation of the parameter value/name can lead to sql injection...

Fedora: Security Advisory for CuraEngine (FEDORA-2022-0125d9cd29)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 34 Update: CuraEngine-4.13.1-2.fc34

CuraEngine is a C++ console application for 3D printing G-code generation. It has been made as a better and faster alternative to the old Skeinforge engine. This is just a console application for G-code generation. For a full graphical application look at cura with is the graphical frontend for...

Cross site request forgery (csrf)

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. The Symfony form component provides a CSRF protection mechanism by using a random token injected in the form and using the session to store and control the token submitted by the user. When using the...

CVE-2021-41270

Symfony/Serializer handles serializing and deserializing data structures for Symfony, a PHP framework for web and console applications and a set of reusable PHP components. Symfony versions 4.1.0 before 4.4.35 and versions 5.0.0 before 5.3.12 are vulnerable to CSV injection, also known as formula...

Microsoft Windows 10 - Theme API &#039;ThemePack&#039; File Parsing

Exploit Title: Microsoft Windows 10 - Theme API 'ThemePack' File Parsing Google Dork: n/a Date: 2020-10-28 Exploit Author: Eduardo Braun Prado Vendor Homepage: http://www.microsoft.com/ Software Link: http://www.microsoft.com/ Version: 10 v.1803 17134.407 Tested on: Windows 7, 8.0, 8.1, 10, Serve...

Microsoft Windows 10 - Theme API ThemePack File Parsing

Microsoft Windows 10 - Theme API ThemePack File Parsing Exploit Title: Microsoft Windows 10 - Theme API 'ThemePack' File Parsing Google Dork: n/a Date: 2020-10-28 Exploit Author: Eduardo Braun Prado Vendor Homepage: http://www.microsoft.com/ Software Link: http://www.microsoft.com/ Version: 10...

SharpSploitConsole - Console Application Designed To Interact With SharpSploit

Console Application designed to interact with SharpSploit released by @cobbrio SharpSploit is a tool written by @cobbrio that combines many techniques/C code from the infosec community and combines it into one sweet DLL. It's awesome so check it out! Description SharpSploit Console is just a quic...