76 matches found
PT-2024-14520 · Unknown · Paddlepaddle
Name of the Vulnerable Software and Affected Versions: PaddlePaddle versions prior to 2.6.0 Description: The issue is related to a flaw in paddle.argmin and paddle.argmax that can cause a runtime crash and a denial of service. This flaw can lead to a denial of service. Recommendations: For versio...
PT-2023-19561 · WordPress · Userpro
Name of the Vulnerable Software and Affected Versions: UserPro plugin for WordPress versions up to, and including, 5.1.1 Description: The issue is due to missing nonce validation in the admin page, userpro verify user, and verifyUnverifyAllUsers functions, making it possible for unauthenticated...
PT-2025-10402
Name of the Vulnerable Software and Affected Versions MariaDB Server versions 10.4 through 10.11., 11.0 through 11.0. Description The issue may cause MariaDB Server to crash with an empty backtrace log. This could be related to the make aggr tables info and optimize stage2 functions...
PT-2023-26678 · Unknown · Jeecg-Boot
Name of the Vulnerable Software and Affected Versions: Jeecg-boot versions 3.5.0 and earlier Description: The issue allows a local attacker to cause a denial of service via the functions Benchmark, PG Sleep, DBMS Lock.Sleep, Waitfor, DECODE, and DBMS PIPE.RECEIVE MESSAGE. This is a result of a SQ...
PT-2023-12514 · WordPress · Hm Multiple Roles
Name of the Vulnerable Software and Affected Versions: Multiple Roles plugin for WordPress versions up to, and including, 1.3.1 Description: The issue is due to missing or incorrect nonce validation on the mu add roles in signup meta and mu add roles in signup meta recently functions. This allows...
PT-2023-16691 · WordPress · Intuitive Custom Post Order
Name of the Vulnerable Software and Affected Versions: Intuitive Custom Post Order plugin for WordPress versions up to, and including, 3.1.3 Description: The issue arises from insufficient escaping on the user-supplied objects and tags parameters and a lack of sufficient preparation in the update...
PT-2023-24380 · Unknown +1 · Erofs-Utils +1
Name of the Vulnerable Software and Affected Versions: erofs-utils version 1.6 Description: The issue is related to a Heap Buffer Overflow that allows remote attackers to execute arbitrary code via a crafted erofs filesystem image. This can be achieved through the erofs read one data function at...
PT-2023-22509 · Nanomq · Nanomq
Name of the Vulnerable Software and Affected Versions: NanoMQ version 0.15.0-0 Description: A segment fault with Null Pointer Dereference occurs in the process of decoding subinfo decode and unsubinfo decode. This issue is related to the decoding process, which can lead to a crash. Recommendation...
PT-2023-11626 · Unknown · Depositgame
Name of the Vulnerable Software and Affected Versions: DepositGame version 1.0 Description: An issue in DepositGame allows an attacker to gain sensitive information via the GetBonusWithdraw and withdraw functions. Recommendations: For DepositGame version 1.0, consider disabling the GetBonusWithdr...
SUSE CVE-2007-5424
The disablefunctions feature in PHP 4 and 5 allows attackers to bypass intended restrictions by using an alias, as demonstrated by using inialter when iniset is disabled...
PT-2023-10817 · Bigtree · Events Extension
Name of the Vulnerable Software and Affected Versions: Events Extension on BigTree affected versions not specified Description: A critical issue was found in the Events Extension, affecting the getRandomFeaturedEventByDate, getUpcomingFeaturedEventsInCategoriesWithSubcategories, recacheEvent, and...
PT-2022-25403 · Unknown · Processwire
Name of the Vulnerable Software and Affected Versions: ProcessWire version 3.0.200 Description: The issue allows attackers to execute arbitrary web scripts or HTML via injection of a crafted payload, leveraging multiple cross-site scripting XSS vulnerabilities. These vulnerabilities are...
PT-2022-4889 · Twisted +4 · Twisted +4
Name of the Vulnerable Software and Affected Versions: Twisted affected versions not specified Description: The issue is related to the exposure of cookies and authorization headers when following cross-origin redirects. This problem is present in the twisted.web.RedirectAgent and...
PT-2021-21779 · Google · Tensorflow
Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.6.0 TensorFlow versions 2.5.1 and earlier TensorFlow versions 2.4.3 and earlier TensorFlow versions 2.3.4 and earlier Description: An attacker can generate undefined behavior via a reference binding to nullptr i...
PT-2020-12796 · Cpp Httplib · Cpp-Httplib
Name of the Vulnerable Software and Affected Versions: cpp-httplib versions 0.5.8 and earlier Description: The issue arises from the lack of filtering for r in parameters passed to the set redirect and set header functions, potentially leading to CRLF injection and HTTP response splitting in...
PHP 7.0 < 7.4 (Unix) - debug_backtrace disable_functions Bypass Exploit
a; $backtrace = new Exception-getTrace; ; if!isset$backtrace1'args' PHP = 7.4 $backtrace = debugbacktrace; class Helper public $a, $b, $c, $d; function str2ptr&$str, $p = 0, $s = 8 $address = 0; for$j = $s-1; $j = 0; $j-- $address = 8; return $out; function write&$str, $p, $v, $n = 8 $i = 0; for$...
PHP 7.0 < 7.3 (Unix) - (gc) Disable Functions Bypass Exploit
Exploit for php platform in category web applications = 0; $j-- $address = 8; return $out; function write&$str, $p, $v, $n = 8 $i = 0; for$i = 0; $i = 8; function leak$addr, $p = 0, $s = 8 global $abc, $helper; write$abc, 0x68, $addr + $p - 0x10; $leak = strlen$helper-a; if$s != 8 $leak %= 2 $s 8...
PHP 7.1 < 7.3 - (json serializer) Disable Functions Bypass Exploit
Exploit for multiple platform in category web applications = 8; public function str2ptr&$str, $p = 0, $s = 8 $address = 0; for$j = $s-1; $j = 0; $j-- $address = 8; return $out; unable to leak ro segments public function leak1$addr global $spl1; $this-write$this-abc, 8, $addr - 0x10; return...
PHP 7.1 7.3 - json serializer disable_functions Bypass
PHP 7.1 7.3 - json serializer disablefunctions Bypass = 8; public function str2ptr&$str, $p = 0, $s = 8 $address = 0; for$j = $s-1; $j = 0; $j-- $address = 8; return $out; unable to leak ro segments public function leak1$addr global $spl1; $this-write$this-abc, 8, $addr - 0x10; return...
PHP 7.1 < 7.3 - 'json serializer' disable_functions Bypass
= 8; public function str2ptr&$str, $p = 0, $s = 8 $address = 0; for$j = $s-1; $j = 0; $j-- $address = 8; return $out; unable to leak ro segments public function leak1$addr global $spl1; $this-write$this-abc, 8, $addr - 0x10; return strlengetclass$spl1; the real deal public function leak2$addr, $p...