stb 安全漏洞

stb is a single-file public domain library of stb for C/C++ by Sean Barrett, an individual developer. A security vulnerability exists in stb that stems from a stack-based buffer overflow due to the parameter pathtoincludes...

Linux Distros Unpatched Vulnerability : CVE-2016-2570

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Edge Side Includes ESI parser in Squid 3.x before 3.5.15 and 4.x before 4.0.7 does not check buffer limits during XML parsing, which allows remote HTTP...

PHPYun 安全漏洞

PHPYun is an efficient solution for talent and business recruitment and employment based on PHP and MySQL database by China Xinchao PHPYun. A security vulnerability exists in PHPYun versions prior to 7.0.2. An attacker can exploit the vulnerability to perform code execution via backdoor-restricte...

PT-2025-49180

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions 2.4.30 through 2.4.65 Description An integer overflow occurs during failed ACME certificate renewal. After approximately 30 days of failures with default configurations, the backoff timer reaches zero. Subsequent...

PT-2025-49181

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions prior to 2.4.66 Description The Apache HTTP Server, when configured with Server Side Includes SSI enabled and utilizing mod cgid but not mod cgi, improperly handles shell-escaped query strings passed to exec cmd=".....

Improper Neutralization of Server-Side Includes (SSI) Within a Web Page

Overview aptrs is an Automated Penetration Testing Reporting System Affected versions of this package are vulnerable to Improper Neutralization of Server-Side Includes SSI Within a Web Page in the web application's handling of user-supplied input in the ckeditor fields that are passed directly to...

The vulnerability of microprogramming software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, MATRIX Series, arises from improper handling of file names for PHP functions like include or require. This allows attackers to gain access to confidential information.

The vulnerability of microprogramming software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series is related to incorrect management of file names for PHP functions like include or require. Exploiting this vulnerability can allow an attacker to gain acce...

squid: Denial of Service processing ESI response content

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content...

squid: Denial of Service processing ESI response content

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content...

squid: Denial of Service processing ESI response content

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content...

squid: Denial of Service processing ESI response content

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content...

squid: Denial of Service processing ESI response content

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content...

squid: Denial of Service processing ESI response content

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content...

squid: Denial of Service processing ESI response content

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content...

squid: Denial of Service processing ESI response content

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content...

squid: Denial of Service processing ESI response content

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content...

squid: Denial of Service processing ESI response content

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content...

CVE-2024-45802

A flaw was found in Squid. Due to input validation and resource management issues, a denial of service may be triggered during the processing of certain Edge Side Includes ESI response content. Mitigation This bug was mitigated by the default upstream build configuration of Squid since version 6....

Food Ordering Management System 安全漏洞

Food Ordering Management System is a food ordering management system by the individual developer Carlo Montero. It provides an online platform to order food from a restaurant or fast food chain. A security vulnerability exists in Food Ordering Management System version 1.0, which stems from some...

PT-2024-39191 · Unknown · Sourcecodester Food Ordering Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Food Ordering Management System version 1.0 Description: A problematic vulnerability has been found in the SourceCodester Food Ordering Management System, affecting some unknown functionality of the file /includes/. This issue...