173 matches found
CVE-2018-25175 Alienor Web Libre 2.0 SQL Injection via index.php
Alienor Web Libre 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the identifiant parameter. Attackers can submit crafted POST requests to index.php with SQL injection payloads in the identifian...
CVE-2018-25175 Alienor Web Libre 2.0 SQL Injection via index.php
Alienor Web Libre 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the identifiant parameter. Attackers can submit crafted POST requests to index.php with SQL injection payloads in the identifian...
CVE-2018-25175
Alienor Web Libre 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the identifiant parameter. Attackers can submit crafted POST requests to index.php with SQL injection payloads in the identifian...
Alienor Web Libre SQL注入漏洞
Alienor Web Libre is a library management system developed by the Alienor company. Version 2.0 of Alienor Web Libre contains a SQL injection vulnerability. This vulnerability stems from the identifiant parameter in the index.php file, which allows for SQL injections, potentially enabling the...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : DjVuLibre vulnerabilities (USN-8054-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8054-1 advisory. It was discovered that DjVuLibre could be forced to execute a division by zero in certain instances. A...
EUVD-2020-29827
Malware in sbrugna...
EUVD-2020-23414
Malware in sbrugna...
EUVD-2020-23413
Malware in sbrugna...
EUVD-2020-23412
Malware in sbrugna...
Unity Linux 20.1070e Security Update: djvulibre (UTSA-2025-680669)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680669 advisory. In DjVuLibre 3.5.27, the sorting functionality aka GArrayTemplate::sort allows attackers to cause a denial-of-service application crash due to an Uncontrolled...
Linux Distros Unpatched Vulnerability : CVE-2022-39372
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features,...
Linux Distros Unpatched Vulnerability : CVE-2025-53105
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features,...
CVE-2025-53105
GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 10.0.0 to before 10.0.19, a connected user without administration rights can change th...
CVE-2025-53105
GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 10.0.0 to before 10.0.19, a connected user without administration rights can change th...
UBUNTU-CVE-2025-53105
GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 10.0.0 to before 10.0.19, a connected user without administration rights can change th...
CVE-2025-53105 GLPI permits unauthorized rules execution order
GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 10.0.0 to before 10.0.19, a connected user without administration rights can change th...
Malicious code in typopro-web-TypoPRO-LibreBaskerville (npm)
The package typopro-web-TypoPRO-LibreBaskerville was found to contain malicious code...
LibreOffice Arbitrary Code Execution vulnerability (Aug 2025) - Windows
LibreOffice is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Libre Office Arbitrary Code Execution vulnerability (Aug 2025) - Linux
Libre Office is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
UBUNTU-CVE-2025-53113
GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 0.65 through 10.0.18, a technician can use the external links feature to fetch...