XML External Entity (XXE) Injection

Overview org.apache.sis.core:sis-metadata is an Implementations of metadata derived from ISO 19115. This module provides both an implementation of the metadata interfaces defined in GeoAPI, and a framework for handling those metadata through Java reflection. Affected versions of this package are...

RHEL 8 : httpd:2.4 (RHSA-2026:0010)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0010 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: modmd: Apache HTTP...

EUVD-2013-1475

Malware in sbrugna...

CVE-2018-7735

CVE-2018-7735 describes a remote SQL injection in Afian FileRun (pre-2018.02.13) exploitable when logged in as superuser via the search parameter in the URL path /?module=metadata&section=cpanel&page=list_filetypes. The issue stems from input in the search parameter that is used in SQL without pr...

PT-2009-5082 · Php +2 · Php +2

Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.2.10 Description: The issue is related to the exif read data function in the Exif module, which allows remote attackers to cause a denial of service crash by providing a malformed JPEG image with invalid offset fields...