PT-2026-40114

An improper neutralization of argument delimiters in a command 'argument injection' vulnerability in Fortinet FortiDeceptor 6.0.0 through 6.0.2, FortiDeceptor 5.3.0 through 5.3.3, FortiDeceptor 5.2.0 through 5.2.1, FortiDeceptor 5.1 all versions, FortiDeceptor 5.0 all versions may allow an...

SQL Injection

github.com/square/squalor is vulnerable to SQL injection. The vulnerability exists due to improper argument handling of the database queries which allows an attacker to inject and execute arbitrary SQL queries...

Command Injection

Overview Affected versions of this package are vulnerable to Command Injection. The vulnerability arises out of improper neutralization of arguments in line 71 of freediskspace.js. Remediation There is no fixed version for freediskspace. Credit: John Hopkins Security Labs...

DEBIAN-CVE-2018-13300

In FFmpeg 3.2 and 4.0.1, an improper argument AVCodecParameters passed to the avprivrequestsample function in the handleeac3 function in libavformat/movenc.c may trigger an out-of-array read while converting a crafted AVI file to MPEG4, leading to a denial of service and possibly an information...

Adobe AcroPDF ActiveX Control Memory Corruption (CVE-2006-6027)

A memory corruption vulnerability exists in the Adobe AcroPDF ActiveX control. The flaw is due by improper handling of arguments passed to certain methods and properties exposed by the control. By enticing a user to open a malicious HTML page, an attacker may inject and execute arbitrary code on...