CVE-2021-43302

Read out-of-bounds in PJSUA API when calling pjsuarecordercreate. An attacker-controlled 'filename' argument may cause an out-of-bounds read when the filename is shorter than 4 characters...

snipe-it 安全漏洞

Snipe-IT is an open source IT asset/license management system. snipe-it versions prior to 5.3.11 contain an elevation of privilege vulnerability that stems from improper privilege management in the software. An attacker could exploit the vulnerability to cause a non-privileged user to create...

CVE-2022-23707

An XSS vulnerability was found in Kibana index patterns. Using this vulnerability, an authenticated user with permissions to create index patterns can inject malicious javascript into the index pattern which could execute against other users...

GHSA-3C7P-VV5R-CMR5 Incorrect Authorization in Apache Solr

Apache Solr versions 6.6.0 to 6.6.6, 7.0.0 to 7.7.3 and 8.0.0 to 8.6.2 prevents some features considered dangerous which could be used for remote code execution to be configured in a ConfigSet that's uploaded via API without authentication/authorization. The checks in place to prevent such featur...

create-frourio-app (>=0.15.0 <=0.29.0) potentially affected by CVE-2022-23623 via frourio (>=0.18.2 <=0.25.1)

frourio NPM version =0.18.2, =0.15.0, =0.29.0 Source cves: CVE-2022-23623 Source advisory: OSV:GHSA-8XXM-H73R-GHFJ...

Wordpress Plugin SupportCandy 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on PHP and MySQL servers.WordPress plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists in...

Path Traversal

org.neo4j.procedure:apoc is vulnerable to path traversal. A remote attacker is able to retrieve and download files from outside the authorized directory and under some circumstances to also create files on the affected server resulting in path traversal vulnerability...

CLSA-2022-1643819084 Fix CVE(s): CVE-2022-23218, CVE-2022-23219

SECURITY UPDATE: buffer overflow in svcunixcreate - debian/patches/any/CVE-2022-23218.patch: check whether AFUNIX socket path length doesn't exceed storage size - CVE-2022-23218 SECURITY UPDATE: buffer overflow in clntcreate - debian/patches/any/CVE-2022-23219.patch: check whether AFUNIX socket...

Cross-site Scripting in Anchor CMS

A cross-site scripting XSS vulnerability in the Create Post function of Anchor CMS v0.12.7 allows attackers to execute arbitrary web scripts or HTML...

CVE-2021-46253

A cross-site scripting XSS vulnerability in the Create Post function of Anchor CMS v0.12.7 allows attackers to execute arbitrary web scripts or HTML...

CVE-2021-44114

Cross Site Scripting XSS vulnerability exists in Sourcecodester Stock Management System in PHP/OOP 1.0, which allows remote malicious users to execute arbitrary remote code execution via create user function...

CVE-2021-44114

Cross Site Scripting XSS vulnerability exists in Sourcecodester Stock Management System in PHP/OOP 1.0, which allows remote malicious users to execute arbitrary remote code execution via create user function...

Lack of auth for vaults

Handle 0x1f8b Vulnerability details Impact Anyone can create vaults and remove vaults from anyone. Proof of Concept The contract ConvexYieldWrapper expose two methods: addVault show in his comment Adds a vault to the user's vault list but according to the code it not use the users vault, it use...

Prototype Pollution in cached-path-relative

The package cached-path-relative before 1.1.0 is vulnerable to Prototype Pollution via the cache variable that is set as instead of Object.createnull in the cachedPathRelative function, which allows access to the parent prototype properties when the object is used to create the cached relative...

CVE-2022-21701

Istio is an open platform to connect, manage, and secure microservices. In versions 1.12.0 and 1.12.1 Istio is vulnerable to a privilege escalation attack. Users who have CREATE permission for gateways.gateway.networking.k8s.io objects can escalate this privilege to create other resources that th...

PT-2022-12373 · WordPress · Wp Google Maps

Name of the Vulnerable Software and Affected Versions: WP Google Map WordPress plugin versions = 1.8.0 Description: The issue allows authenticated low-role users to create, edit, and delete maps. Recommendations: For WP Google Map WordPress plugin versions = 1.8.0, update to a version greater tha...

H2 Database Console Remote Code Execution

Document Title =============== Unauthenticated RCE vuln in the H2 Database console: CVE-2022-23221. Product Description =============== The H2 Console Application The Console lets you access a SQL database using a browser interface. Homepage: http://www.h2database.com/html/quickstart.html Affecte...

The vulnerability of the SwapCreateRegister function in the implementation of the X Window System X.Org Server allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the SwapCreateRegister function in the X Window System X.Org Server implementation is related to the execution of operations that go beyond the permissible data buffer limits. Exploiting this vulnerability can allow attackers to access confidential data, compromise its...

CVE-2021-26706

An issue was discovered in libmem.c in Micrium uC/OS uC/LIB 1.38.x and 1.39.00. The following memory allocation functions do not check for integer overflow when allocating a pool whose size exceeds the address space: MemPoolCreate, MemDynPoolCreate, and MemDynPoolCreateHW. Because these functions...

PT-2022-9406 · Unknown · Cached-Path-Relative

Name of the Vulnerable Software and Affected Versions: cached-path-relative versions prior to 1.1.0 Description: The issue allows for Prototype Pollution via the cache variable set as instead of Object.createnull in the cachedPathRelative function. This enables access to parent prototype properti...