15 matches found
CVE-2026-33991
WeGIA is a web manager for charitable institutions. Prior to version 3.6.7, the file html/socio/sistema/deletartag.php uses extract$REQUEST on line 14 and directly concatenates the $idtag variable into SQL queries on lines 16-17 without prepared statements or sanitization. Version 3.6.7 patches t...
CVE-2026-33991
WeGIA is a web manager for charitable institutions. Prior to version 3.6.7, the file html/socio/sistema/deletartag.php uses extract$REQUEST on line 14 and directly concatenates the $idtag variable into SQL queries on lines 16-17 without prepared statements or sanitization. Version 3.6.7 patches t...
CVE-2026-33991
CVE-2026-33991 affects WeGIA (web manager for charitable institutions). Before version 3.6.7, html/socio/sistema/deletar_tag.php uses extract($_REQUEST) and directly concatenates $id_tag into SQL queries (no prepared statements/sanitization), enabling SQL injection. This results in potential data...
CVE-2026-33991 WeGIA has SQL Injection in deletar_tag.php
WeGIA is a web manager for charitable institutions. Prior to version 3.6.7, the file html/socio/sistema/deletartag.php uses extract$REQUEST on line 14 and directly concatenates the $idtag variable into SQL queries on lines 16-17 without prepared statements or sanitization. Version 3.6.7 patches t...
WeGIA SQL注入漏洞
WeGIA is a network manager for the welfare organization developed by Nilson Lazarin. Versions of WeGIA prior to 3.6.7 contained an SQL injection vulnerability. This vulnerability stemmed from incorrect handling of the parameter idtag in the file html/socio/sistema/deletartag.php, which could lead...
EUVD-2006-2907
Malware in sbrugna...
SUSE: Security Advisory (SUSE-SU-2025:0055-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2023-31423 · Dalmann · Ocpp.Core
Name of the Vulnerable Software and Affected Versions: Dalmann OCPP.Core versions prior to 1.3.0 Description: An issue was discovered in Dalmann OCPP.Core for OCPP Open Charge Point Protocol for electric vehicles. It permits multiple transactions with the same connectorId and idTag, contrary to t...
travelglutenfree.co.uk Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1015072 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting travelglutenfree.co.uk...
Mp3 Online Id Tag Editor - Remote File Inclusion
Mp3 Online Id Tag Editor - Remote File Inclusion ======================================================================================== | Title : Mp3 Online Id Tag Editor RFI Vulnerability | Author : indoushka | email : [email protected] | Home : www.iqs3cur1ty.com | | Web Site :...
Mp3 Online Id Tag Editor RFI Vulnerability
Exploit for php platform in category web applications ========================================== Mp3 Online Id Tag Editor RFI Vulnerability ========================================== ======================================================================================== | Title : Mp3 Online Id T...
MP3 Online Id Tag Editor Remote File Inclusion
======================================================================================== | Title : Mp3 Online Id Tag Editor RFI Vulnerability | Author : indoushka | email : [email protected] | Home : www.iqs3cur1ty.com | | Web Site :...
CVE-2006-2910
Buffer overflow in jetAudio 6.2.6.8330 Basic, and possibly other versions, allows user-assisted attackers to execute arbitrary code via an audio file such as WMA with long ID Tag values including 1 Title, 2 Author, and 3 Album, which triggers the overflow in the tooltip display string if the soun...
Buffer overflow
Buffer overflow in jetAudio 6.2.6.8330 Basic, and possibly other versions, allows user-assisted attackers to execute arbitrary code via an audio file such as WMA with long ID Tag values including 1 Title, 2 Author, and 3 Album, which triggers the overflow in the tooltip display string if the soun...
CVE-2006-2910
Buffer overflow in jetAudio 6.2.6.8330 Basic, and possibly other versions, allows user-assisted attackers to execute arbitrary code via an audio file such as WMA with long ID Tag values including 1 Title, 2 Author, and 3 Album, which triggers the overflow in the tooltip display string if the soun...