116 matches found
Netcon NS-ASG SQL Injection Vulnerability
Netcon NS-ASG is an application security gateway from China Netcon Technology Netcon. A security vulnerability exists in Netcon NS-ASG version 6.3, which originates from some unknown functions in /protocol/firewall/addaddressinterpret.phpp that cause SQL injection via the parameter messagecontent...
SUSE CVE-2020-28012
Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rdainterpret uses a privileged pipe that lacks a close-on-exec flag...
PT-2022-36748 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-underflow read error. Technical details include the crash type and state, which involve functions such as gs type2...
PT-2022-37262 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-underflow read error. Technical details about the crash include the functions gs type2 interpret, copied type1 gly...
OSV-2021-1690 Global-buffer-overflow in search_table_1
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42266 Crash type: Global-buffer-overflow READ 1 Crash state: searchtable1 splitbogusoperator pdfiinterpretstreamoperator...
DEBIAN-CVE-2020-28012
Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rdainterpret uses a privileged pipe that lacks a close-on-exec flag...
UBUNTU-CVE-2020-28012
Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rdainterpret uses a privileged pipe that lacks a close-on-exec flag...
CVE-2021-27516
URI.js aka urijs before 1.19.6 mishandles certain uses of backslash such as http:/ and interprets the URI as a relative path...
Malicious package may avoid detection in python auditing
Python Auditing Vulnerability Demonstrates how a malicious package can insert a load-time poison pill to avoid detection by tools like Safety. Tools that are designed to find vulnerable packages can not ever run in the same python environment that they are trying to protect. Usage Install safety,...
Design/Logic Flaw
XAMPP through 5.6.8 allows XSS via the cds-fpdf.php interpret or titel parameter. NOTE: This product is discontinued...
CVE-2019-8924
XAMPP through 5.6.8 allows XSS via the cds-fpdf.php interpret or titel parameter. NOTE: This product is discontinued...
imagemagick/ping_mvg_fuzzer: Crash in GlobExpression
Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5703754605658112 Project: imagemagick Fuzzer: libFuzzerimagemagickpingmvgfuzzer Fuzz target binary: pingmvgfuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type: UNKNOWN RE...
[SECURITY] Fedora 23 Update: kf5-kjs-5.24.0-1.fc23
KDE Frameworks 1 Tier 1 functional module with JavaScript interpret...
Ttalk-Translate Chat,Interpret - Customized SSL, Redefined SSL Common Names verifier, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Ttalk-Translate Chat,Interpret published at the 'play' market has multiple vulnerabilities...
RedHat Update for python RHSA-2011:0491-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
DEBIAN-CVE-2010-4054
The gstype2interpret function in Ghostscript allows remote attackers to cause a denial of service incorrect pointer dereference and application crash via crafted font data in a compressed data stream, aka bug 691043...