CVE-2021-43333

The Datalogic DXU service on for example DL-Axist devices does not require authentication for configuration changes or disclosure of configuration settings...

CVE-2021-43333

The Datalogic DXU service on for example DL-Axist devices does not require authentication for configuration changes or disclosure of configuration settings...

CVE-2021-43333

The Datalogic DXU service on for example DL-Axist devices does not require authentication for configuration changes or disclosure of configuration settings...

CVE-2021-43333

The CVE-2021-43333 issue affects the Datalogic DXU service used on DL-Axist devices. The vulnerability arises from a lack of authentication when performing configuration changes or disclosing configuration settings, exposing potential for unauthorized disclosure or modification of settings. The a...

Datalogic Dxu Service 访问控制错误漏洞

Datalogic Dxu Service is a Datalogic system application for device configuration from the Italian company Datalogic.An authorization issue vulnerability exists in the Datalogic DXU service on DL-Axist, which stems from a lack of privileges when making privilege changes to the product's Datalogic...

CVE-2021-40281

An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, and 2021 in dl/dlprint.php when registering ordinary users...

CVE-2021-40280

An SQL Injection vulnerablitly exits in zzcms 8.2, 8.3, 2020, and 2021 via the id parameter in admin/dlsendmail.php...

dl-manual.com Cross Site Scripting vulnerability OBB-2168770

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2020-19957

A SQL injection vulnerability has been discovered in zz cms version 2019 which allows attackers to retrieve sensitive data via the id parameter on the /dl/dlprint.php page...

ZZCMS SQL注入漏洞

ZZCMS is a content management system CMS from the Zzcms team in China.ZZCMS version 2019 is vulnerable to a SQL injection vulnerability that originates from a missing validation of externally entered SQL statements in the id parameter on the application's /dl/dlprint.php page. An attacker could u...

The vulnerability of the K2dobj.dl library of the COMPAS-3D 3D modeling system, related to the execution of operations outside the buffer boundaries in memory, allows attackers to cause system failures.

The vulnerability of the K2dobj.dl library in the KOMPAS-3D 3D modeling system is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to cause a service failure using a specially crafted CDW format file...

CVE-2020-11144

Buffer over-read while UE process invalid DL ROHC packet for decompression due to lack of check of size of compresses packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

dl-c.ch Cross Site Scripting vulnerability OBB-1495729

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

GHSA-X48M-GP6R-GP4V Malicious Package in rate-map

Version 1.0.3 of rate-map contains malicious code. The malware breaks functionality of the purescript-installer package by rewriting code of the dl-tar dependency. Recommendation Upgrade to version 1.0.5 or later. There is no indication of further compromise...

dl-schwabe.de Cross Site Scripting vulnerability OBB-1214786

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

[SECURITY] Fedora 31 Update: pure-ftpd-1.0.49-5.fc31

Pure-FTPd is a fast, production-quality, standard-comformant FTP server, based upon Troll-FTPd. Unlike other popular FTP servers, it has no known security flaw, it is really trivial to set up and it is especially designed for modern Linux and FreeBSD kernels setfsuid, sendfile, capabilities...

Design/Logic Flaw

An issue was discovered on ASUS HG100, MW100, WS-101, TS-101, AS-101, MS-101, DL-101 devices using ZigBee PRO. Attackers can utilize the "discover ZigBee network procedure" to perform a denial of service attack...

NewStart CGSL MAIN 5.04 : glibc Multiple Vulnerabilities (NS-SA-2019-0012)

The remote NewStart CGSL host, running version MAIN 5.04, has glibc packages installed that are affected by multiple vulnerabilities: - elf/dl-load.c in ld.so in the GNU C Library aka glibc or libc6 through 2.11.2, and 2.12.x through 2.12.1, does not properly handle a value of $ORIGIN for the...

Malicious Package

Overview Version 1.0.3 of rate-map contains malicious code. The malware breaks functionality of the purescript-installer package by rewriting code of the dl-tar dependency. Recommendation Upgrade to version 1.0.5 or later. There is no indication of further compromise. References GitHub Advisory...

Rockwell Automation 1771-DL General Purpose Discrete I/O

Binary data 753389.prm...