2734 matches found
NETGEAR XR300 安全漏洞
The NETGEAR XR300 is a wireless router from NETGEAR. A buffer overflow vulnerability exists in NETGEAR XR300 v1.0.3.78, which originates from the passphrase parameter in the bridgewirelessmain.cgi component that fails to correctly validate the length of the input data, and can be exploited by a...
CVE-2024-45884
DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to setSWMGroup...
CVE-2024-51299
In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the dumpSyslog function...
CVE-2024-49767 Werkzeug possible resource exhaustion when parsing file data in forms
Werkzeug is a Web Server Gateway Interface web application library. Applications using werkzeug.formparser.MultiPartParser corresponding to a version of Werkzeug prior to 3.0.6 to parse multipart/form-data requests e.g. all flask applications are vulnerable to a relatively simple but effective...
Impronta Janto 跨站脚本漏洞
Impronta Janto is an online ticketing platform from Impronta. A cross-site scripting vulnerability exists in Impronta Janto version 4.3r11, which originates from a vulnerability that allows an attacker to execute JavaScript code in the victim's browser by sending a malicious URL to the victim usi...
AZL-50827 CVE-2024-47692 affecting package kernel for versions less than 5.15.173.1-1
In the Linux kernel, the following vulnerability has been resolved: nfsd: return -EINVAL when namelen is 0 When we have a corrupted main.sqlite in /var/lib/nfs/nfsdcld/, it may result in namelen being 0, which will cause memdupuser to return ZEROSIZEPTR. When we access the name.data that has been...
UBUNTU-CVE-2024-47692
In the Linux kernel, the following vulnerability has been resolved: nfsd: return -EINVAL when namelen is 0 When we have a corrupted main.sqlite in /var/lib/nfs/nfsdcld/, it may result in namelen being 0, which will cause memdupuser to return ZEROSIZEPTR. When we access the name.data that has been...
Malicious code in sd-template-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b1d800f01a52aafc7bee8ab45032560696e9e36ca3c902a4adc7d1245294fc0e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
PT-2024-12651 · Eufy · Eufy Homebase 2
Name of the Vulnerable Software and Affected Versions: Eufy Homebase 2 versions prior to 3.3.4.1h Description: The Eufy Homebase 2 creates a dedicated wireless network for its ecosystem, serving as a proxy to the end user's primary network. The WPA2-PSK generation of this dedicated network is...
Malicious code in osint-tool (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 10a834a37294b0f3aaf52345444f8c5c2a15dde780c8342446c53ecc05d623c0 osint packages promise to be OSINT tool, however, when providing the username to search for, the package attempts to exfiltrate Discord tokens from the user. T...
Malicious code in @kp-admin/main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e5dc03ae8edb86b5c5bd3968c80bda004a2d31b59095717c3ca8d4f6c1a9a553 The OpenSSF Package Analysis project identified '@kp-admin/main' @ 20.0.0 npm as malicious. It is considered malicious because: - The package...
Exploit for Unrestricted Upload of File with Dangerous Type in Git
CVE-2024-32002-PoC Proof of Concep...
Rapid SCADA 安全漏洞
Rapid SCADA is a full-featured SCADA software from Rapid SCADA Open Source. A security vulnerability exists in Rapid SCADA version 5.8.4, which originates in the file ScadaServerEngine/MainLogic.cs where CheckUser allows the use of empty passwords...
PT-2024-31910 · Semcms · Semcms
Name of the Vulnerable Software and Affected Versions: SEMCMS version 4.8 Description: The issue is related to an SQL Injection vulnerability. This vulnerability exists through the SEMCMS Main.php file. Recommendations: For SEMCMS version 4.8, as a temporary workaround, consider restricting acces...
GHSA-9JMP-J63G-8X6M Withdrawn Advisory: Lunary information disclosure vulnerability
Withdrawn Advisory This advisory has been withdrawn because the lunary npm package is connected to https://github.com/lunary-ai/lunary-js, not the https://github.com/lunary-ai/lunary repo that is discussed in this advisory. The underlying vulnerability report is still valid, but it doesn't affect...
CVE-2024-6087 Improper Access Control in lunary-ai/lunary
An improper access control vulnerability exists in lunary-ai/lunary at the latest commit a761d83 on the main branch. The vulnerability allows an attacker to use the auth tokens issued by the 'invite user' functionality to obtain valid JWT tokens. These tokens can be used to compromise target user...
init/main.c: Fix potential static_command_line memory overflow
...
NewStart CGSL MAIN 6.02 : perl-HTTP-Tiny Multiple Vulnerabilities (NS-SA-2024-0058)
The remote NewStart CGSL host, running version MAIN 6.02, has perl-HTTP-Tiny packages installed that are affected by multiple vulnerabilities: - It was found that perl can load modules from the current directory if not found in the module directories, via the @INC path. A local, authenticated...
NewStart CGSL MAIN 6.02 : qemu Vulnerability (NS-SA-2024-0057)
The remote NewStart CGSL host, running version MAIN 6.02, has qemu packages installed that are affected by a vulnerability: - A flaw was found in the QEMU virtual crypto device while handling data encryption/decryption requests in virtiocryptohandlesymreq. There is no check for the value of srcle...
NewStart CGSL MAIN 6.02 : openssh Vulnerability (NS-SA-2024-0061)
The remote NewStart CGSL host, running version MAIN 6.02, has openssh packages installed that are affected by a vulnerability: - A vulnerability was found in OpenSSH. The PKCS11 feature in the ssh-agent in OpenSSH has an insufficiently trustworthy search path, leading to remote code execution if ...