git: The sideband payload is passed unfiltered to the terminal in git

A flaw was found in Git. When cloning, fetching, or pushing from a server, informational or error messages are transported from the remote Git process to the client via a sideband channel. These messages are prefixed with "remote:" and printed directly to the standard error output. Typically, thi...

PT-2025-11642 · Unknown · G-Net Dashcam Bb Gonx

Name of the Vulnerable Software and Affected Versions: G-Net Dashcam BB GONX affected versions not specified Description: An issue was discovered on G-Net Dashcam BB GONX devices, allowing unauthorized persons to manage settings, obtain sensitive data, and sabotage the car battery. Unauthorized...

CVE-2024-52005

A flaw was found in Git. When cloning, fetching, or pushing from a server, informational or error messages are transported from the remote Git process to the client via a sideband channel. These messages are prefixed with "remote:" and printed directly to the standard error output. Typically, thi...

Remote code execution

Craft is a CMS for creating custom digital experiences on the web and beyond. Bypassing the validatePath function can lead to potential remote code execution. This vulnerability can lead to malicious control of vulnerable systems and data exfiltrations. Although the vulnerability is exploitable...

Council veto protection does not work

Handle TomFrenchBlockchain Vulnerability details Impact Council can veto proposals to remove them to remain in power. Proof of Concept The Vader governance contract has the concept of a "council" which can unilaterally accept or reject a proposal. To prevent a malicious council preventing itself...

SQL Injection

top-think/think is vulnerable to a SQL Injection attack.A malicious user can pass a request to the inner delete function to control the WHERE clause of the SQL query...

MS14-044: Description of the security update for SQL Server 2014 (GDR): August 12, 2014

MS14-044: Description of the security update for SQL Server 2014 GDR: August 12, 2014 Introduction A security issue has been identified in Microsoft SQL Server 2014 that could allow an attacker to compromise your system and gain control over it. You can help protect your computer by installing th...

F5 BIG-IP - Authentication Bypass (PoC)

Matta Consulting - Matta Advisory https://www.trustmatta.com F5 BIG-IP remote root authentication bypass Vulnerability Advisory ID: MATTA-2012-002 CVE reference: CVE-2012-1493 Affected platforms: BIG-IP platforms without SCCP Version: 11.x 10.x 9.x Date: 2012-February-16 Security risk: High...

世界之窗(The World)浏览器地址栏欺骗漏洞

No description provided by source. +++++++++++++++++++++++++++++++++++++++++ 新打开的链接，地址栏是http://www.baidu.com 内容却是被人恶意控制的 Baidu function win x=window.open'http://www.baidu.com'; x.location="about:Baidu要过冬了其实80sec说了也不算数了......document.title="Hacked By 80sec"";...

CVE-2001-0408

vim aka gvim processes VIM control codes that are embedded in a file, which could allow attackers to execute arbitrary commands when another user opens a file containing malicious VIM control codes...

[RHSA-2001:008-02] Updated vim packages available

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated vim packages available Advisory ID: RHSA-2001:008-02 Issue date: 2001-01-29 Updated on: 2001-03-21 Product: Red Hat Linux Keywords: vim vim-enhanced stl status line Cros...