EUVD-2016-3035

Malware in sbrugna...

jbd2: fix data-race and null-ptr-deref in jbd2_journal_dirty_metadata()

...

CVE-2021-34084

OS command injection vulnerability in Turistforeningen node-s3-uploader through 2.0.3 for Node.js allows attackers to execute arbitrary commands via the metadata function...

CVE-2024-13229

CVE-2024-13229 concerns Rank Math SEO – AI SEO Tools to Dominate SEO Rankings (WordPress) vulnerability: missing capability check in update_metadata() allows authenticated attackers with Contributor+ to delete schema metadata on posts. Affected versions include up to 1.0.235. Exploitation is desc...

PT-2024-39463 · WordPress · Rank Math Seo

Name of the Vulnerable Software and Affected Versions: Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress versions up to, and including, 1.0.228 Description: The issue is caused by a missing capability check on the update metadata function, allowing unauthenticated attacke...

CVE-2021-34084

OS command injection vulnerability in Turistforeningen node-s3-uploader through 2.0.3 for Node.js allows attackers to execute arbitrary commands via the metadata function...

Command injection

OS command injection vulnerability in Turistforeningen node-s3-uploader through 2.0.3 for Node.js allows attackers to execute arbitrary commands via the metadata function...

s3-uploader 操作系统命令注入漏洞

s3-uploader is flexible and efficient for image resizing, renaming and uploading to Amazon S3 disk storage. A security vulnerability in Turistforeningen node-s3-uploader 2.0.3 and earlier stems from a Node.js package insecurely passing data to the metadata function, which ultimately connects to a...

CVE-2021-34084

OS command injection vulnerability in Turistforeningen node-s3-uploader through 2.0.3 for Node.js allows attackers to execute arbitrary commands via the metadata function...

PT-2019-11555 · Matthew Mccormick +4 · Jhead +4

Name of the Vulnerable Software and Affected Versions: jhead version 3.03 Description: The issue is related to incorrect access control, which can lead to a denial of service. This occurs when the victim opens a specially crafted JPEG file, affecting the iptc.c component, specifically the show IP...

CVE-2018-20431

GNU Libextractor through 1.8 has a NULL Pointer Dereference vulnerability in the function processmetadata in plugins/ole2extractor.c...

Integer overflow

The MoofParser::Metadata function in binding/MoofParser.cpp in libstagefright in Mozilla Firefox before 44.0 does not limit the size of read operations, which might allow remote attackers to cause a denial of service integer overflow and buffer overflow or possibly have unspecified other impact v...