Arbitrary Code Injection

Overview dbgpt is a DB-GPT is an experimental open-source project that uses localized GPT large models to interact with your data and environment. With this solution, you can beassured that there is no risk of data leakage, and your data is 100% private and secure. Affected versions of this packa...

The vulnerability of the CPU FX5U(C) and FX5UJ modules of MELSEC iQ-F series PLCs, which stems from insufficient input data verification, allows attackers to trigger malfunctions during maintenance operations.

The vulnerability of the CPU FX5UC and FX5UJ modules of the MELSEC iQ-F series is related to insufficient checking of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures by sending specially crafted files...

CVE-2020-1193

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

Microsec e-Szigno XML Digital Signature Forgery Security Bypass Vulnerability

Microsec e-Szigno is a suite of electronic signature authentication applications. Microsec e-Szigno does not validate the signature of specially crafted XML files, allowing attackers to bypass XML digital signature validation by performing man-in-the-middle attacks to forge XML file content and...