11 matches found
youlai-mall 安全漏洞
youlai-mall is a full-stack mall system by youlaitech open source. A security vulnerability exists in youlai-mall version 1.0.0 and 2.0.0, which stems from improper control of dynamic variables and may lead to remote attacks...
CVE-2025-14051
A flaw has been found in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function getById/updateAddress/deleteAddress of the file /mall-ums/app-api/v1/addresses/. Executing manipulation can lead to improper control of dynamically-identified variables. The attack can be executed remotely. The...
CVE-2025-14051 youlaitech youlai-mall addresses deleteAddress improper control of dynamically-identified variables
A flaw has been found in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function getById/updateAddress/deleteAddress of the file /mall-ums/app-api/v1/addresses/. Executing manipulation can lead to improper control of dynamically-identified variables. The attack can be executed remotely. The...
youlai-mall 安全漏洞
youlai-mall is a full-stack mall system by youlaitech open source. A security vulnerability exists in youlai-mall version 1.0.0 and 2.0.0, which stems from a mis-control of dynamically recognized variables in the file /mall-ums/app-api/v1/addresses...
EUVD-2023-53931
Malicious code in bioql PyPI...
The vulnerability of the Remote Function Call interface in the SAP NetWeaver AS ABAP software integration platform allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Remote Function Call interface in the SAP NetWeaver AS ABAP software integration platform is related to insufficient control over dynamically defined variables. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protect...
EulerOS Virtualization 2.11.1 : gcc (EulerOS-SA-2024-1412)
According to the versions of the gcc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - DISPUTEDA failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an...
NVIDIA DGX Security Vulnerability
NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. A security vulnerability exists in NVIDIA DGX A100 Servers, which stems from the possibility that a user may be able to cause dynamic variables to be evaluated via local access...
Huawei EulerOS: Security Advisory for gcc (EulerOS-SA-2023-3296)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-4039 GCC's-fstack-protector fails to guard dynamically-sized local variables on AArch64
DISPUTEDA failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in dynamically-sized local variables in your application without this being detected. This stack-protector failure only applies to C99-style...
PHP file include vulnerability attack and Defense combat-vulnerability warning-the black bar safety net
Summary PHP is a very popular Web development language on the Internet many Web applications are using PHP development. And in the use of PHP development of Web applications, PHP file include vulnerability is a Common Vulnerability. The use of PHP file include vulnerabilities intrusion website is...