CVE-2022-31196

Databasir is a database metadata management platform. Databasir = 1.06 has Server-Side Request Forgery SSRF vulnerability. The SSRF is triggered by a sending a single HTTP POST request to create a databaseType. By supplying a jdbcDriverFileUrl that returns a non 200 response code, the url is...

ROS-20251028-07

A vulnerability in the library commands for Exiv2 media file metadata management is related to the following quadratic algorithm in the ICC profile analysis code in jpegBase::readMetadata can lead to a prolonged Exiv2. Exploitation of the vulnerability could allow an attacker to cause a denial of...

EUVD-2013-6157

Malware in sbrugna...

EUVD-2013-6127

Malware in sbrugna...

EUVD-2013-6145

Malware in sbrugna...

EUVD-2013-6125

Malware in sbrugna...

EUVD-2013-6129

Malware in sbrugna...

EUVD-2013-6126

Malware in sbrugna...

EUVD-2013-6159

Malware in sbrugna...

EUVD-2013-6146

Malware in sbrugna...

EUVD-2013-6128

Malware in sbrugna...

EUVD-2024-19962

Malicious code in bioql PyPI...

[SECURITY] Fedora 41 Update: exiv2-0.28.6-2.fc41

A command line utility to access image metadata, allowing one to: print the Exif metadata of Jpeg images as summary info, interpreted values, or the plain data for each tag print the Iptc metadata of Jpeg images print the Jpeg comment of Jpeg images set, add and delete Exif and Iptc metadata of...

CVE-2021-36129

An issue was discovered in the Translate extension in MediaWiki through 1.36. The Aggregategroups Action API module does not validate the parameter for aggregategroup when action=remove is set, thus allowing users with the translate-manage right to silently delete various groups' metadata...

[SECURITY] Fedora 42 Update: fscrypt-0.3.5-2.fc42

fscrypt is a high-level tool for the management of Linux filesystem encryptio n. This tool manages metadata, key generation, key wrapping, PAM integration, and provides a uniform interface for creating and modifying encrypted directories...

ROS-20250117-01

Exiv2 media metadata management library vulnerability is related to the use of an uninitialized resource. of an uninitialized resource. Exploitation of the vulnerability could allow an attacker to gain unauthorized access to protected information...

Talend Data Catalog 安全漏洞

Talend Data Catalog is a tool that combines data cataloging and metadata management from Talend. It is used to connect data from platforms, databases, and analytic tools to generate a holistic view of the information supply chain in a language everyone can understand. A security vulnerability...

CVE-2022-31196

Databasir is a database metadata management platform. Databasir = 1.06 has Server-Side Request Forgery SSRF vulnerability. The SSRF is triggered by a sending a single HTTP POST request to create a databaseType. By supplying a jdbcDriverFileUrl that returns a non 200 response code, the url is...

Exiv2 Uninitialized Memory Read Vulnerability

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. An uninitialized memory read vulnerability exists in Exiv2 0.27.3 and earlier versions. An attacker can exploit the vulnerability to leak a few bytes of stack memory via specially crafted image files...

Exiv2 out-of-bounds read vulnerability (CNVD-2021-33987)

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. An out-of-bounds read vulnerability exists in Exiv2 0.27.3 and earlier versions. An attacker can exploit this vulnerability to cause a denial of service via specially crafted image files...