CLSA-2025-1757409276 mpfr: Fix of CVE-2014-9474

CVE-2014-9474: Fix of a buffer overflow due to incorrect GMP documentation for mpnsetstr...

Malicious code in @zalastax/nolb-mpn (npm)

The package @zalastax/nolb-mpn was found to contain malicious code...

MAL-2025-12414 Malicious code in @zalastax/nolb-mpn (npm)

The package @zalastax/nolb-mpn was found to contain malicious code...

CVE-2014-9474

Buffer overflow in the mpfrstrtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpnsetstr...

UBUNTU-CVE-2014-9474

Buffer overflow in the mpfrstrtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpnsetstr...

Cross site scripting

Cross-site scripting XSS vulnerability in print.php in myPHPNuke MPN before 1.8.88rc2 allows remote attackers to inject arbitrary web script or HTML via the sid parameter...

CVE-2008-4088

CVE-2008-4088 affects myPHPNuke (MPN) up to version 1.8.8_8rc2, where print.php via the sid parameter allows remote SQL injection to execute arbitrary commands. Affected: print.php in MPN; root cause: insufficient input validation. Remediation: upgrade to 1.8.8_8rc2 or later.

CVE-2008-4092

The CVE-2008-4092 issue affects myPHPNuke (MPN) before version 1.8.8_8rc2, where a SQL injection vulnerability in printfeature.php allows remote attackers to execute arbitrary SQL commands via the artid parameter. The vulnerability arises in the handling of artid, permitting exploitation without ...

CVE-2008-4089

CVE-2008-4089 affects myPHPNuke (MPN) prior to version 1.8.8_8rc2. The vulnerability is a cross-site scripting (XSS) flaw in print.php where the sid parameter can be injected with arbitrary web script or HTML. The available connected data confirms the affected component and the vulnerability clas...

CVE-2008-4089

Cross-site scripting XSS vulnerability in print.php in myPHPNuke MPN before 1.8.88rc2 allows remote attackers to inject arbitrary web script or HTML via the sid parameter...

CVE-2006-6795

The CVE describes a PHP remote file inclusion in the My_eGallery 2.5.6 module of myPHPNuke, specifically in gallery/displayCategory.php. The vulnerability allows an attacker to cause arbitrary PHP code execution by supplying a URL in the basepath parameter. This is a server-side RFI risk that cou...

CVE-2006-0923

CVE-2006-0923 affects MyPHPNuke (MPN) up to version 1.88 and earlier. The vulnerability surfaces as multiple cross-site scripting (XSS) flaws that allow remote attackers to inject arbitrary web script or HTML via (1) the letter parameter in reviews.php and (2) the dcategory parameter in download....