EUVD-2016-3035

Malware in sbrugna...

jbd2: fix data-race and null-ptr-deref in jbd2_journal_dirty_metadata()

...

CVE-2021-34084

OS command injection vulnerability in Turistforeningen node-s3-uploader through 2.0.3 for Node.js allows attackers to execute arbitrary commands via the metadata function...

CVE-2024-13229

CVE-2024-13229 concerns Rank Math SEO – AI SEO Tools to Dominate SEO Rankings (WordPress) vulnerability: missing capability check in update_metadata() allows authenticated attackers with Contributor+ to delete schema metadata on posts. Affected versions include up to 1.0.235. Exploitation is desc...

PT-2024-39463 · WordPress · Rank Math Seo

Name of the Vulnerable Software and Affected Versions: Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress versions up to, and including, 1.0.228 Description: The issue is caused by a missing capability check on the update metadata function, allowing unauthenticated attacke...

CVE-2021-34084

OS command injection vulnerability in Turistforeningen node-s3-uploader through 2.0.3 for Node.js allows attackers to execute arbitrary commands via the metadata function...

Command injection

OS command injection vulnerability in Turistforeningen node-s3-uploader through 2.0.3 for Node.js allows attackers to execute arbitrary commands via the metadata function...

s3-uploader 操作系统命令注入漏洞

s3-uploader is flexible and efficient for image resizing, renaming and uploading to Amazon S3 disk storage. A security vulnerability in Turistforeningen node-s3-uploader 2.0.3 and earlier stems from a Node.js package insecurely passing data to the metadata function, which ultimately connects to a...

CVE-2021-34084

OS command injection vulnerability in Turistforeningen node-s3-uploader through 2.0.3 for Node.js allows attackers to execute arbitrary commands via the metadata function...

The vulnerability of the readMetadata function in the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the readMetadata function in the Utils.cpp file of the Android operating system exists due to an incorrect limitation on the path name for the restricted access directory. Exploiting this vulnerability can allow a malicious individual to enhance their privileges when connecti...

PT-2019-11555 · Matthew Mccormick +4 · Jhead +4

Name of the Vulnerable Software and Affected Versions: jhead version 3.03 Description: The issue is related to incorrect access control, which can lead to a denial of service. This occurs when the victim opens a specially crafted JPEG file, affecting the iptc.c component, specifically the show IP...

CVE-2018-20431

GNU Libextractor through 1.8 has a NULL Pointer Dereference vulnerability in the function processmetadata in plugins/ole2extractor.c...

Integer overflow

The MoofParser::Metadata function in binding/MoofParser.cpp in libstagefright in Mozilla Firefox before 44.0 does not limit the size of read operations, which might allow remote attackers to cause a denial of service integer overflow and buffer overflow or possibly have unspecified other impact v...