168 matches found
EUVD-2014-3207
Malware in sbrugna...
EUVD-2018-7726
Malware in sbrugna...
Code-Projects Online Hotel Reservation System 代码问题漏洞
Online Hotel Reservation System is an online hotel reservation system. Online Hotel Reservation System has an arbitrary file upload vulnerability that stems from the lack of valid validation of uploaded files by the parameter image in the file /admin/addexec.php. No details of the vulnerability a...
Code-Projects Online Hotel Reservation System 代码问题漏洞
Online Hotel Reservation System is an online hotel reservation system. Online Hotel Reservation System has an arbitrary file upload vulnerability that stems from a lack of valid validation of uploaded files by the parameter image in the file /admin/addslideexec.php. No details of the vulnerabilit...
Code-Projects Online Hotel Reservation System 代码问题漏洞
Online Hotel Reservation System is an online hotel reservation system. Online Hotel Reservation System suffers from an arbitrary file upload vulnerability that stems from the lack of valid validation of uploaded files by the parameter image in the file /admin/addgalleryexec.php. No details of the...
code-projects Online Hotel Reservation System 代码问题漏洞
Online Hotel Reservation System is an online hotel reservation system. Online Hotel Reservation System has an arbitrary file upload vulnerability that stems from a lack of valid validation of uploaded files by the parameter image in the file /admin/editpicexec.php. No details of the vulnerability...
EUVD-2021-28687
Malicious code in bioql PyPI...
EUVD-2023-44051
Malicious code in bioql PyPI...
EUVD-2022-24725
Malicious code in bioql PyPI...
EUVD-2025-7906
Malicious code in bioql PyPI...
Cisco IOS XR Software Image Verification Bypass Vulnerability
A vulnerability in the installation process of Cisco IOS XR Software could allow an authenticated, local attacker to bypass Cisco IOS XR Software image signature verification and load unsigned software on an affected device. To exploit this vulnerability, the attacker must have root-system...
CVE-2023-46725
FoodCoopShop is open source software for food coops and local shops. Versions starting with 3.2.0 prior to 3.6.1 are vulnerable to server-side request forgery. In the Network module, a manufacturer account can use the /api/updateProducts.json endpoint to make the server send a request to an...
CVE-2021-41675
A Remote Code Execution RCE vulnerabilty exists in Sourcecodester E-Negosyo System 1.0 in /admin/produts/controller.php via the doInsert function, which validates images with getImageSizei...
CVE-2020-10567
An issue was discovered in Responsive Filemanager through 9.14.0. In the ajaxcalls.php file in the saveimg action in the name parameter, there is no validation of what kind of extension is sent. This makes it possible to execute PHP code if a legitimate JPEG image contains this code in the EXIF...
CVE-2019-15640
Limesurvey before 3.17.10 does not validate both the MIME type and file extension of an image...
PT-2026-48232
Name of the Vulnerable Software and Affected Versions image-size versions 1.1.0 through 1.2.0 image-size versions 2.0.0 through 2.0.1 Description A denial of service issue exists when processing specially crafted images with zero-sized boxes. Remote attackers can cause an application hang by...
Mattermost Mobile Apps Denial of Service Vulnerability
Mattermost Mobile Apps is a messaging mobile application from Mattermost USA. A denial of service vulnerability exists in Mattermost Mobile Apps version 2.25.0, which stems from an improperly validated GIF image, and can be exploited by an attacker to crash an Android application via a message...
CVE-2025-20161 Cisco NX-OS Software Command Injection Vulnerability
A vulnerability in the software upgrade process of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local attacker with valid Administrator credentials to execute a command injection attack on the underlying operating...
Cisco Nexus 3000 and 9000 Series Switches Command Injection Vulnerability
A vulnerability in the software upgrade process of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local attacker with valid Administrator credentials to execute a command injection attack on the underlying operating...
Cisco Nexus 3000 Series Switches和Cisco Nexus 9000 Series Switches 操作系统命令注入漏洞
Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches are both products of Cisco, Inc.Cisco Nexus 3000 Series Switches is a 3000 series switch.Cisco Nexus Cisco Nexus 9000 Series Switches are Cisco products.Cisco Nexus 3000 Series Switches are 3000 series switches. An operating...