CVE-2026-5998 zhayujie chatgpt-on-wechat CowAgent API Memory Content Endpoint service.py dispatch path traversal

A flaw has been found in zhayujie chatgpt-on-wechat CowAgent up to 2.0.4. This affects the function dispatch of the file agent/memory/service.py of the component API Memory Content Endpoint. This manipulation of the argument filename causes path traversal. The attack can be initiated remotely. Th...

Improper Handling of Insufficient Permissions or Privileges

Overview Affected versions of this package are vulnerable to Improper Handling of Insufficient Permissions or Privileges via the Dispatch function in the worker.go file. An attacker can escalate privileges and modify sensitive system data by sending unauthorized commands to manipulate the package...

The vulnerability lies in the implementation of the __destruct() and dispatch($command) functions in the Laravel PHP framework, which allow a hacker to execute arbitrary code.

The vulnerability of implementing the destruct and dispatch$command functions in the Laravel PHP framework is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...

Trend Micro tmactmon.sys DOS vulnerability analysis(0day)-vulnerability warning-the black bar safety net

When tmactmon. sys received ioctlcode=0x9100444f the IRP, it will call the Dispatch function for processing, as shown below. . text:0 0 0 1 1 1 1 6 ; int stdcall BugDispatchint, PIRP Irp . text:0 0 0 1 1 1 1 6 BugDispatch proc near ; DATA XREF: sub11C4C+16D o . text:0 0 0 1 1 1 1 6 . text:0 0 0 1...