GHSA-632P-P495-25M5 Directus is soft-locked by providing a string value to random string util

Describe the Bug Providing a non-numeric length value to the random string generation utility will create a memory issue breaking the capability to generate random strings platform wide. This creates a denial of service situation where logged in sessions can no longer be refreshed as sessions...

SUSE CVE-2015-8807

Cross-site scripting XSS vulnerability in the renderVarInputnumber function in horde/framework/Core/lib/Horde/Core/Ui/VarRenderer/Html.php in Horde Groupware before 5.2.12 and Horde Groupware Webmail Edition before 5.2.12 allows remote attackers to inject arbitrary web script or HTML via vectors...

CVE-2022-2939 WP Cerber Security <= 9.0 - User Enumeration Bypass

The WP Cerber Security plugin for WordPress is vulnerable to security protection bypass in versions up to, and including 9.0, that makes user enumeration possible. This is due to improper validation on the value supplied through the 'author' parameter found in the /cerber-load.php file. In...

Mhart Stringstream Buffer Error Vulnerability

Mhart Stringstream is a JS-based code library for converting Stream data streams directly to string type by Mhart individual developers. A buffer error vulnerability exists in the Node.js stringstream module prior to version 0.0.6, which stems from susceptibility to out-of-bounds reads, as an...

DEBIAN-CVE-2019-9084

In Hoteldruid before 2.3.1, a division by zero was discovered in $numtabelle in tabtariffe.php aka the numtariffa1 parameter due to the mishandling of non-numeric values, as demonstrated by the /tabtariffe.php?anno=YEAR&numtariffa1=1a URI. It could allow an administrator to conduct remote denial ...

GHSA-G74R-FFVR-5Q9F Memory Exposure in concat-stream

Versions of concat-stream before 1.5.2 are vulnerable to memory exposure if userp provided input is passed into write Versions 1.3.0 are not affected due to not using unguarded Buffer constructor. Recommendation Update to version 1.5.2, 1.4.11, 1.3.2 or later. If you are unable to update make sur...

python-django: Open redirect and possible XSS attack via user-supplied numeric redirect URLs

A redirect flaw, where the issafeurl function did not correctly sanitize numeric-URL user input, was found in python-django. A remote attacker could exploit this flaw to perform XSS attacks against the OpenStack dashboard...

Symantec Altiris DS SQL Injection Vulnerability

Usage Info This module exploits a SQL injection flaw in Symantec Altiris Deployment Solution 6.8 to 6.9.164. The vulnerability exists on axengine.exe which fails to adequately sanitize numeric input fields in "UpdateComputer" notification Requests. In order to spawn a shell, several SQL injection...

Symantec Altiris DS SQL Injection

This module exploits a SQL injection flaw in Symantec Altiris Deployment Solution 6.8 to 6.9.164. The vulnerability exists on axengine.exe which fails to adequately sanitize numeric input fields in "UpdateComputer" notification Requests. In order to spawn a shell, several SQL injections are...

5UCMS <= v1. 2. 2 0 2 4 background not validation and SQL injection-vulnerability warning-the black bar safety net

Brief description: The background file does not do verification, it has been filtered does not strictly lead toSQL injection Detailed description: File location admin/ajax. asp 2 4 row Case "modeext" .. 2 6 row ecid=ReplaceRequest"cid","'","" 2 7 row cid=ReplaceRequest"id","'","" .. .. 3 1 The li...