chrisbao_package1 (>=1.0.0 <=1.0.1), dss-bloodrelation (>=1.0.0 <=1.0.6) +4 more potentially affected by unknown CVE via @antv/g6-plugins (=1.0.9)

@antv/g6-plugins NPM version =1.0.9 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/g6-plugins and may be impacted: - chrisbaopackage1 =1.0.0, =1.0.0, =0.1.0, =1.3.7, =1.1.0, =1.1.2 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3994...

EUVD-2007-5796

Malware in sbrugna...

GNU cflow 安全漏洞

GNU cflow is a flowchart generator from the US GNU community that reads C source files and generates externally referenced flowcharts. A security vulnerability exists in GNU cflow version 1.8 and earlier, which stems from a null pointer dereference problem...

GitLab 16.5 < 16.5.3 / 16.6 < 16.6.1 (CVE-2023-6396)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Gitlab reports: XSS and ReDoS in Markdown via Banzai pipeline of Jira Members with admingroupmember custom permission can add members with higher role Release Description visible in public projects...

Presto JDBC Server-Side Request Forgery by nextUri

Summary Presto JDBC is vulnerable to Server-Side Request Forgery SSRF when connecting a remote Presto server. An attacker can modify the nextUri parameter to internal server in response content that Presto JDBC client will request next and view sensitive information from highly sensitive internal...

Presto JDBC Server-Side Request Forgery by redirect

Summary Presto JDBC is vulnerable to Server-Side Request Forgery SSRF when connecting a remote Presto server. An attacker can construct a redirect response that Presto JDBC client will follow and view sensitive information from highly sensitive internal servers or perform a local port scan. Detai...

5 must-try user flow diagramming tools for UX designing 2021

By Uzair Amir Want to come up with a smooth user flow diagram for your website or app? Then find out about the best user flow and flowchart creation tools in this guide. This is a post from HackRead.com Read the original post: 5 must-try user flow diagramming tools for UX designing 2021...

Stored XSS Vulnerability in Swift Flowcharts

Swift Flowchart Maker is a compact and feature-rich flowchart drawing tool. Swift Flowchart has a stored XSS vulnerability that can be exploited by an attacker to obtain user cookie information...

GNU cflow Resource Management Error Vulnerability (CNVD-2021-36540)

GNU cflow is a flowchart generator for the GNU community that reads C source files and generates externally referenced flowcharts. A resource management error vulnerability exists in cflow version 1.6, which stems from the existence of a post-release use of the callchar name, int line function in...

Command Execution Vulnerability in Swift Flowchart

Xunjie Flowchart Maker is a flowchart drawing tool. The software can be used to draw business flowcharts, program flowcharts, organization charts, workflow charts and so on for various professions. Swift Flowchart has a command execution vulnerability that can be exploited by an attacker to gain...

GNU cflow Buffer Overflow Vulnerability

GNU cflow is a flowchart generator from the GNU Project that reads C source files and generates externally referenced flowcharts. A buffer overflow vulnerability exists in the 'nexttoken' function of the parser.c file in GNU cflow 1.6 and earlier versions, which can be exploited by an attacker to...

An attacker with Office vulnerability propagation FELIXROOT Backdoor-vulnerability warning-the black bar safety net

! One, the attack event details 2017 9 months, in response to Ukrainian attacks, FireEye found FELIXROOT Backdoor this malicious payload, and feedback to our intelligence perception of the customers. The attack activities using some malicious Ukrainian banks document that contains a macro, used t...

Microsoft Visio CVE-2011-1972远程代码执行漏洞

Bugtraq ID: 49024 Microsoft Visio是一款微软开发的流程图软件。 在解析特制的Visio文件时，Microsoft Visio校验内存中对象存在一个远程代码执行漏洞，攻击者构建恶意文件，诱使用户解析，可以应用程序上下文执行任意代码 Microsoft Visio 2010 SP1 Microsoft Visio 2010 0 Microsoft Visio 2007 SP2 Microsoft Visio 2007 SP1 Microsoft Visio 2007 0 Microsoft Visio 2003 Standard Microsoft Visio...

EDraw Flowchart Active-X Control 2.3 Buffer Overflow

!/usr/bin/perl Title: EDraw Flowchart ActiveX Control 2.3 .edd parsing Remote Buffer Overflow PoC Vendor: EdrawSoft Product Web Page: http://www.edrawsoft.com Summary: Do you want to learn how to draw? Now you can online! Learn how to draw like a local application with Edraw Flowchart ActiveX...

EDraw Flowchart ActiveX Control 2.3 - &#039;EDImage.ocx&#039; Remote Denial of Service (IE)

EDraw Flowchart ActiveX Control 2.3 EDImage.ocx Remote DoS Exploit IE Vendor: EdrawSoft - http://www.edrawsoft.com Platform Used: MS Win XP Pro SP3 en / IE 8.0 CompanyName EDrawSoft FileDescription EDraw Flowchart ActiveX Control Module FileVersion 2, 3, 0, 6 InternalName EDrawSoft LegalCopyright...

EDraw Flowchart ActiveX Control 2.3 (EDImage.ocx) DoS Exploit (IE)

Exploit for windows platform in category dos / poc ========================================================================= EDraw Flowchart ActiveX Control 2.3 EDImage.ocx Remote DoS Exploit IE ========================================================================= EDraw Flowchart ActiveX...

EDraw Flowchart ActiveX Control 2.3 (.edd parsing) Buffer Overflow PoC

Exploit for windows platform in category local exploits ============================================================================= EDraw Flowchart ActiveX Control 2.3 .edd parsing Remote Buffer Overflow PoC =============================================================================...

EDraw Flowchart ActiveX Control 2.3 (EDImage.ocx) Remote DoS Exploit (IE)

Summary Do you want to learn how to draw? Now you can online! Learn how to draw like a local application with Edraw Flowchart ActiveX Control that lets you quickly build basic flowcharts, organizational charts, business charts, hr diagram, work flow, programming flowchart and network diagrams...

EDraw Flowchart ActiveX Control 2.3 - &#039;.edd parsing&#039; Buffer Overflow

!/usr/bin/perl Title: EDraw Flowchart ActiveX Control 2.3 .edd parsing Remote Buffer Overflow PoC Vendor: EdrawSoft Product Web Page: http://www.edrawsoft.com Summary: Do you want to learn how to draw? Now you can online! Learn how to draw like a local application with Edraw Flowchart ActiveX...

EDraw Flowchart ActiveX Control 2.3 (.edd parsing) Remote Buffer Overflow PoC

Summary Do you want to learn how to draw? Now you can online! Learn how to draw like a local application with Edraw Flowchart ActiveX Control that lets you quickly build basic flowcharts, organizational charts, business charts, hr diagram, work flow, programming flowchart and network diagrams...