9 matches found
EUVD-2023-45259
Malicious code in bioql PyPI...
ROS-20250520-01
Vulnerability of v3dirq function in drivers/gpu/drm/v3d/v3dirq.c - driver for Direct Rendering Infrastructure DRI support in Linux kernel is related to code errors. Direct Rendering Infrastructure DRI of the Linux kernel is related to bugs in the code. Exploitation of the vulnerability could allo...
PHPJabbers Cinema Booking System 2.0 SQL Injection Vulnerability
CVE-2024-57430 An SQL injection vulnerability in the pjActionGetUser function of PHPJabbers Cinema Booking System v2.0 allows attackers to manipulate database queries via the column parameter. Exploiting this flaw can lead to unauthorized information disclosure, privilege escalation, or database...
Security Bulletin: IBM Copy Services manager is affected by IBM SDK, Java Technology Edition Quarterly CPU - Oct 2023 - Includes Oracle October 2023 CPU plus CVE-2023-5676
Summary IBM Copy Services Manager is affected by All applicable Java SE CVEs published by Oracle as part of their October 2023 Critical Patch Update plus CVE-2023-5676. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions...
Citrix system has a logic flaw vulnerability
Citrix, or Citrix, is a high-tech company dedicated to the field of cloud computing virtualization, virtual desktops and remote access technology. A logic flaw vulnerability exists in the Citrix system, which can be exploited by attackers to compromise confidentiality and integrity...
MGASA-2020-0464 Updated openjpeg2 packages fix security vulnerabilities
A heap-buffer overwrites error was discovered in lib/openjp2/mqc.c in OpenJPEG 2.3.1. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution CVE-2020-27814. A flaw was found in OpenJPEG’s encoder. This flaw allows an attacker ...
MGASA-2020-0363 Updated ansible package fixes security vulnerabilities
An Improper Output Neutralization for Logs flaw was found in Ansible when using the uri module, where sensitive data is exposed to content and json output. This flaw allows an attacker to access the logs or outputs of performed tasks to read keys used in playbooks from other users within the uri...
CVE-2015-2590
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2015-4732...
MyBloggie 2.1 - 'index.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13507/info myBloggie is affected by multiple vulnerabilities. An attacker may leverage these issues to carry out cross-site scripting, HTML injection and SQL injection attacks against the affected application. This may result in the theft of authenticatio...