25 matches found
EUVD-2020-30984
60CycleCMS 2.5.2 contains a cross-site scripting XSS vulnerability in news.php that allows attackers to inject malicious scripts through GET parameters. Attackers can craft malicious URLs with XSS payloads targeting the 'etsu' and 'ltsu' parameters to execute arbitrary scripts in victim's browser...
EUVD-2020-30985
60CycleCMS 2.5.2 contains an SQL injection vulnerability in news.php and common/lib.php that allows attackers to manipulate database queries through unvalidated user input. Attackers can exploit vulnerable query parameters like 'title' to inject malicious SQL code and potentially extract or modif...
60CycleCMS 跨站脚本漏洞
60CycleCMS is an open-source content management system developed by 60CycleCMS. Version 2.5.2 of 60CycleCMS contains a cross-site scripting vulnerability. This vulnerability stems from the etsu and ltsu parameters in the news.php file, which allow cross-site scripting attacks. This could enable...
EUVD-2007-1034
Malware in sbrugna...
Online Course Registration /news.php File SQL Injection Vulnerability
Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter newstitle in the file /news.php. An attacker can exploit this...
PHPGurukul Online Course Registration 注入漏洞
Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter newstitle in the file /news.php. An attacker can exploit this...
CVE-2025-25521
Seacms =13.3 is vulnerable to SQL Injection in admintypenews.php...
MGASA-2021-0286 Updated graphicsmagick packages fix security vulnerabilities
Updated graphicsmagick packages fix security vulnerabilities: The graphicsmagick package has been updated to version 1.3.36, fixing several security issues and other bugs. See the upstream NEWS file for details...
Updated gdisk package fixes security vulnerabilities
A bug that could cause segfault if GPT header claimed partition entries are oversized CVE-2020-0256. A bug that could cause a crash if a badly-formatted MBR disk was read CVE-2021-0308. The gdisk package has been updated to version 1.0.6, fixing these issues and several other bugs. See the upstre...
CVE-2018-18789
An issue was discovered in zzcms 8.3. SQL Injection exists in zt/top.php via a Host HTTP header to zt/news.php...
Updated networkmanager packages fix CVE-2016-0764
Updated networkmanager package fixes security vulnerability: NetworkManager before 1.0.12 is vulnerable to a race condition that could lead to a local information leak CVE-2016-0764. The networkmanager package has been updated to version 1.0.12, which fixes this issue and several other bugs. See...
Updated vlc packages fix security vulnerability
Updated vlc packages fix security vulnerabilities: The vlc package has been updated to version 2.2.3, which fixes several bugs and possible security issues. See the NEWS file for details...
Updated vlc packages fix security vulnerabilities
Updated vlc packages fix security vulnerabilities: The vlc package has been updated to version 2.2.2, which fixes several bugs and possible security issues. See the NEWS file for details...
Updated librsvg packages fix security vulnerability
Out-of-bounds heap read in librsvg2 was found when parsing SVG file CVE-2015-7557. Stack exhaustion due to cyclic dependency causing to crash an application was found in librsvg2 while parsing SVG file CVE-2015-7558. The librsvg package has been updated to version 2.40.13, fixing these issues and...
News File Grabber 4.1.0.1 Subject Line Stack Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/22617/info News File Grabber is prone to a remote stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory...
News File Grabber 4.1.0.1 Subject Line Stack Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/22617/info News File Grabber is prone to a remote stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory...
Debian Security Advisory DSA 2804-1 (drupal7 - several vulnerabilities)
Multiple vulnerabilities have been discovered in Drupal, a fully-featured content management framework: Cross-site request forgery, insecure pseudo random number generation, code execution, incorrect security token validation and cross-site scripting. In order to avoid the remote code execution...
Multiple Newsrover / Newsbin / Newsreactor / Grabbit / News Files Grabber security vulnerabilities
Vulnerabilities on different XML-format files parsing...
Stack overflow
Stack-based buffer overflow in News File Grabber 4.1.0.1 and earlier allows remote attackers to execute arbitrary code via a .nzb file with a long subject field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-1037
Stack-based buffer overflow in News File Grabber 4.1.0.1 and earlier allows remote attackers to execute arbitrary code via a .nzb file with a long subject field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...