Easy Forms for Mailchimp < 6.8.9 - Reflected XSS

The plugin does not sanitise and escape a parameter before outputting it back in the page when the debug option is enabled, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. When the debug settings is enabled ie...

Linux kernel 安全特征问题漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel, which can be exploited by an attacker to bypass restrictions on access to Linux kernel data and open a UDP port via an ICMP error to read sensitive...

ImageMagick Digital Error Vulnerability (CNVD-2021-10260)

ImageMagick is a software for creating, editing, and composing images that can read, convert, and write images in many formats. A numeric error vulnerability exists in MagickCore/gem-private.h in versions of ImageMagick prior to 7.0.9-0. An attacker can exploit this vulnerability by submitting a...

CVE-2018-5818

The CVE-2018-5818 entry concerns LibRaw prior to 0.19.1, where an error in parse_rollei() (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop (potential DoS). Affected component: LibRaw (image demosaic/decoding code). Root cause: faulty handling in parse_rollei() leading to u...

CVE-2018-5813

An error within the "parseminolta" function dcraw/dcraw.c in LibRaw versions prior to 0.18.11 can be exploited to trigger an infinite loop via a specially crafted file...

CVE-2018-5813

An error within the "parseminolta" function dcraw/dcraw.c in LibRaw versions prior to 0.18.11 can be exploited to trigger an infinite loop via a specially crafted file...

FlipViewer FViewerLoading ActiveX Control Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'FlipViewer...