CVE-2026-5833 awwaiid mcp-server-taskwarrior index.ts server.setRequestHandler command injection

A security vulnerability has been detected in awwaiid mcp-server-taskwarrior up to 1.0.1. This impacts the function server.setRequestHandler of the file index.ts. Such manipulation of the argument Identifier leads to command injection. The attack must be carried out locally. The exploit has been...

records-mover Injection vulnerability

A weakness has been identified in bluelabsio records-mover up to 1.5.4. The affected element is an unknown function of the component Table Object Handler. This manipulation causes SQL Injection. The attack needs to be launched locally. Upgrading to version 1.6.0 is sufficient to fix this issue...

CVE-2023-7333

The CVE-2023-7333 issue affects bluelabsio/records-mover

PT-2024-25427 · Ibm · Websphere Mq

Name of the Vulnerable Software and Affected Versions: Checkmk versions 2.0.0 through 2.1.0 Checkmk versions prior to 2.2.0p26 Checkmk versions prior to 2.3.0b5 Description: The issue allows a local attacker to inject an argument to runmqsc, potentially due to an untrusted data vulnerability in t...

CVE-2020-8486

Insufficient protection of the inter-process communication functions in ABB System 800xA RNRP all published versions enables an attacker authenticated on the local system to inject data, affect node redundancy handling...

CVE-2019-20591

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 software. There is local SQL injection in the Gear VR Service Content Provider. The Samsung ID is SVE-2019-14058 July 2019...

FTPShell Client 5.24 - Local Buffer Overflow

''' + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/FTPSHELL-v5.24-BUFFER-OVERFLOW.txt Vendor: ================================ www.ftpshell.com Product: ================================ FTPShell Client version 5.24 FTPShell client is ...

Supr Shopsystem - Persistent UI Vulnerability

Document Title: =============== Supr Shopsystem - Persistent UI Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1353 Release Date: ============= 2014-11-07 Vulnerability Laboratory ID VL-ID: ==================================== 1353 Common...

Oracle 10g SYS. LT. COMPRESSWORKSPACETREE local injection vulnerability-vulnerability warning-the black bar safety net

Oracle 10g SYS. LT. COMPRESSWORKSPACETREE local injection vulnerability This is slightly modified version of: This is based on cursor injection and does not need create function privileges: DECLARE D NUMBER; BEGIN D := DBMSSQL. OPENCURSOR; DBMSSQL. PARSED,'declare pragma autonomoustransaction;...