CVE-2026-44500

ZCV-64500: Allocation amplification in Zebra inbound deserializers affects Zebra nodes prior to 4.4.0 across zebrad, zebra-chain, and zebra-network. Inbound messages (headers, blocks, transactions) could be deserialized using generic transport or block-size ceilings, causing unauthenticated/post-...

CVE-2026-40881 Zebra: addr/addrv2 Deserialization Resource Exhaustion

ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.0 and zebra-network version 5.0.1, when deserializing addr or addrv2 messages, which contain vectors of addresses, Zebra would fully deserialize them up to a maximum length over 233,000 that was derived from the 2 MiB...

SQL Injection Vulnerability in Tuana VIP Movie Network V3.7.8 wa***.p***

Group ah.com is an Internet + entrepreneurial services trading platform. Group Ah VIP Movie Network V3.7.8 wa.p SQL injection vulnerability can be exploited by an attacker to obtain sensitive information from the database...

Sql injection

Multiple SQL injection vulnerabilities in Leadhound Full and LITE 2.1, and probably the Network Version "Full Version", allow remote attackers to execute arbitrary SQL commands via the 1 banner parameter in agentlinks.pl; the offset parameter in 2 agentlinks.pl, 3 agenttransactions.pl, 4...

CVE-2006-2062

CVE-2006-2062 involves multiple SQL injection vulnerabilities in Leadhound Full and LITE 2.1 (and likely the Network Version “Full Version”). The description lists specific injectable parameters across scripts: (1) banner in agent_links.pl; (2) offset in agent_links.pl; (3) agent_transactions.pl;...