Denial of Service (DoS)

Overview transpile is a Transpiles JavaScript modules from one format to another. Affected versions of this package are vulnerable to Denial of Service DoS due to a lack of input sanitization or whitelisting, coupled with improper exception handling in the .to function. PoC Base code: var transpi...

GHSA-JH2M-J8PP-55RC Prototype Pollution in gedi

All versions of package gedi up to and including version 1.6.3 are vulnerable to Prototype Pollution via the set function...

Regular Expression Denial of Service (ReDoS)

Overview is-email is a Loosely validate an email address. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via the isEmail function. PoC: var isEmail = require"is-email" function buildblankn var ret = "" for var i = 0; i n; i++ ret += "@" return ret +...

SAP NetWeaver AS ABAP Denial of Service Vulnerability (CNVD-2021-29099)

SAP Netweaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform provides a development and runtime environment for SAP applications. A denial of service vulnerability exists in SAP NetWeaver AS ABAP versions 731, 740, and 750. The vulnerability...

CVE-2020-1899

The unserialize function supported a type code, "S", which was meant to be supported only for APC serialization. This type code allowed arbitrary memory addresses to be accessed as if they were static StringData objects. This issue affected HHVM prior to v4.32.3, between versions 4.33.0 and 4.56....

CVE-2021-26541

The gitlog function in src/index.ts in gitlog before 4.0.4 has a command injection vulnerability...

CMSWing SQL注入漏洞

CMSWing is a ThinkJS-based e-commerce platform and CMS builder. A code execution vulnerability exists in CMSWing 1.3.8. The vulnerability stems from the log function not checking the log parameter. An attacker can exploit this vulnerability to execute arbitrary commands via malicious parameters...

CVE-2020-11833

In /SM8250QMaster/android/vendor/oppocharger/oppo/chargeric/oppomp2650.c, the function mp2650datalogwrite in mp2650datalogwrite does not check the parameter len which causes a vulnerability...

bitcoin-abe Cross-Site Scripting Vulnerability

bitcoin-abe is a blockchain browser. The product is able to read bitcoin block files and it supports converting and loading data into a database. A cross-site scripting vulnerability exists in the call in the abe.py file in bitcoin-abe versions 0.7.2 and earlier and 0.8pre and earlier. The...

OSV-2020-1845 Stack-buffer-overflow in void put_epel_hv_fallback<unsigned short>

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=25937 Crash type: Stack-buffer-overflow READ 2 Crash state: void putepelhvfallback accelerationfunctions::puthevcepelv void mcchroma...

CVE-2020-10768

A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being 'force disabled' when it is not and opens the system to Spectre v2 attacks. The highest threa...

OSV-2020-1711 Use-of-uninitialized-value in void transform_idct_add<unsigned char>

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=25448 Crash type: Use-of-uninitialized-value Crash state: void transformidctadd transform4x4add8fallback void accelerationfunctions::transformadd...

@carnesen/mathjs-app (>=0.0.2 <=0.0.5), @ia-cloud/node-red-contrib-ia-cloud-fds-raspberry-pi (>=0.1.0 <=0.1.1) +37 more potentially affected by CVE-2017-1001004 via typed-function (>=0.10.3 <=0.10.5)

typed-function NPM version =0.10.3, =0.0.2, =0.1.0, =1.0.0, =1.19.0, =1.13.0, =1.1.8, =0.5.1, =0.1.22, =0.5.1, =3.10.0, =0.0.3, =0.1.18 and more Source cves: CVE-2017-1001004 Source advisory: OSV:GHSA-3QH4-R86R-GRVM...

CVE-2019-20914

An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwgencodecommonentityhandledata in commonentityhandledata.spec...

Microsoft SharePoint Server 2013 < 15.0.5241.1000 Multiple Vulnerabilities

According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities : - A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application...

Microsoft SharePoint Server 2019 < 16.0.10359.20000 Multiple Vulnerabilities

According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities : - A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application...

SwftCoin has a logic flaw vulnerability

SwftCoin SWFTC is an ethereum-based virtual currency. The 'buy' function in SWFTC's smart contract implementation has a security vulnerability that stems from the fact that an attacker can specify the price at which to buy. The vulnerability can be exploited by an attacker to cause financial loss...

Logic Flaw Vulnerability in FuturXE

FuturXE FXE is an ethereum-based virtual currency.A security vulnerability exists in the 'transferFrom' function in FXE's smart contract implementation, which stems from a logic error in the program. An attacker could exploit the vulnerability to make an unauthorized transfer of digital assets...

CVE-2019-16879

The Synergy Systems & Solutions SSS HUSKY RTU 6049-E70, with firmware Versions 5.0 and prior, has a Missing Authentication for Critical Function CWE-306 vulnerability. The affected product does not require authentication for TELNET access, which may allow an attacker to change configuration or...

PT-2020-5472 · Sqlite +5 · Sqlite +5

Name of the Vulnerable Software and Affected Versions: SQLite versions through 3.31.1 Description: The issue allows attackers to cause a denial of service, resulting in a segmentation fault, via a malformed window-function query. This is due to the mishandling of the AggInfo object's...