23 matches found
CVE-2025-13129 Business Logic Error in Seneka Software's Onaylarım
Improper Enforcement of Behavioral Workflow vulnerability in Seneka Software Hardware Information Technology Trade Contracting and Industry Ltd. Co. Onaylarım allows Functionality Misuse. This issue affects Onaylarım: from 25.09.26.01 through 18112025...
EUVD-2021-1886
Malware in sbrugna...
EUVD-2005-1599
Malware in sbrugna...
EUVD-2015-9375
Malware in sbrugna...
EUVD-2020-28948
Malware in sbrugna...
EUVD-2018-0059
Malware in sbrugna...
EUVD-2017-16005
Malware in sbrugna...
EUVD-2006-7031
Malware in sbrugna...
EUVD-2022-53000
Malicious code in bioql PyPI...
EUVD-2023-53334
Malicious code in bioql PyPI...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a potential error problem caused by misuse of the smpprocessorid function...
sqlite: Crash due to misuse of window functions.
A flaw was found in SQLite. A buffer overflow vulnerability allows a local attacker to cause a denial of service via a crafted script...
SUSE CVE-2022-36087
OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker providing malicious redirect uri can cause denial of service. An attacker can also leverage usage of urivalidate functions depending where it is used. OAuthLib...
CVE-2022-30976
GPAC 2.0.0 misuses a certain Unicode utf8wcslen renamed gfutf8wcslen function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by MP4Box...
sds 安全漏洞
sds is a structured data search package. A security vulnerability exists in sds version 0.0.0 and later, which originates from a misuse of the set function located in js/set.js, where the library could be tricked into adding or modifying properties of Object.prototype...
Owner can takeover funds meant for distribution
Lines of code Vulnerability details Impact By calling sweep function at correct moment, Owner can transfer more than required tokenOut token which were meant to be distributed to users. Proof of Concept 1. Observe the sweep function function sweepaddress token external gacPausable nonReentrant...
PYSEC-2018-134
samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realpath function on POSIX platforms other than Apple platforms where glibc is not used, possibly leading to a buffer overflow...
httpd: ap_get_basic_auth_pw() authentication bypass
It was discovered that the use of httpd's apgetbasicauthpw API function outside of the authentication phase could lead to authentication bypass. A remote attacker could possibly use this flaw to bypass required authentication if the API was used incorrectly by one of the modules used by httpd...
Linux kernel restricted use write vulnerability
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the drivers/infiniband stack using the insecure 'write' function to replace the 'bi-directional ioctl '...
X.Org / XFree86 xfs DoS
Invalid SendErrToClient function use...