8 matches found
Prototype Pollution
Overview @evomap/evolver is an A GEP-powered self-evolution engine for AI agents. Features automated log analysis and Genome Evolution Protocol GEP for auditable, reusable evolution assets. Affected versions of this package are vulnerable to Prototype Pollution via the Object.assign process in...
Evolver has Prototype Pollution via `Object.assign()` in its mailbox store operations
Summary A prototype pollution vulnerability in the mailbox store module allows attackers to modify the behavior of all JavaScript objects by injecting malicious properties into Object.prototype. The vulnerability exists in the applyUpdate and updateRecord functions which use Object.assign to merg...
SUSE CVE-2015-1869
The default event handling scripts in Automatic Bug Reporting Tool ABRT allow local users to gain privileges as demonstrated by a symlink attack on a varlogmessages file...
CVE-2023-1498
A vulnerability classified as critical has been found in code-projects Responsive Hotel Site 1.0. Affected is an unknown function of the file messages.php of the component Newsletter Log Handler. The manipulation of the argument title leads to sql injection. It is possible to launch the attack...
Responsive Hotel Site SQL注入漏洞
Responsive Hotel Site is a PHP-based responsive hotel website. A SQL injection vulnerability exists in code-projects Responsive Hotel Site version 1.0, which stems from a problem with a function in the file messages.php, where manipulation of the parameter title can lead to sql injection...
Curl Heap Buffer Overflow Vulnerability
Haxx curl is a set of file transfer tools from the Swedish company Haxx that work on the command line using URL syntax, the tool supports file uploads and downloads, and includes a libcurl client-side URL transfer library for program development. A heap buffer overflow vulnerability exists in the...
PHPauction GPL Enhanced 2.51 Multiple RFI Vulnerabilities
No description provided by source. Name : PHPauction GPL 2.51 Multiple Remote File Include Vulnerabilities Download From : http://www.johnrayfield.com/phpauction/phpauction-gpl-enhanced-251.zip Found By : RoMaNcYxHaCkEr RoMaNTiC-TeaM BlackxHat , BlackBox , alwheed Home Page : WwW.4RxH.CoM...
CVE-2003-1386
AXIS 2400 Video Server 2.00 through 2.33 allows remote attackers to obtain sensitive information via an HTTP request to /support/messages, which displays the server's /var/log/messages file...