Focalboard doesn't sanitize category IDs before incorporating them into dynamic SQL statements

UNSUPPORTED WHEN ASSIGNED Focalboard version 8.0 fails to sanitize category IDs before incorporating them into dynamic SQL statements when reordering categories. An attacker can inject a malicious SQL payload into the category id field, which is stored in the database and later executed unsanitiz...

[SECURITY] Fedora 42 Update: bind-dyndb-ldap-11.11-9.fc42

This package provides an LDAP back-end plug-in for BIND. It features support for dynamic updates and internal caching, to lift the load off of your LDAP server...

IBM Informix Dynamic Server Long Username Authentication Error Stack Overflow - Ver2 (CVE-2006-3854)

A buffer overflow vulnerability has been reported in IBM Informix Dynamic Database Server. An attacker could exploit this vulnerability via a long username, which causes an overflow in vsprintf when displaying in the resulting error message. Successful exploitation of this vulnerability could all...

CVE-2005-3642

Vulnerability summary (CVE-2005-3642) : IBM Informix Dynamic Database server running on Windows XP with Simple File Sharing enabled is affected. The issue allows remote attackers to bypass authentication and log on to the guest account by supplying an invalid username. This yields partial impacts...

CVE-2005-3642

IBM Informix Dynamic Database server running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication and log on to the guest account by supplying an invalid username...