8 matches found
CVE-2024-24754
Bref enable serverless PHP on AWS Lambda. When Bref is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event is converted to a PSR7 object. During the conversion process, if the request is a MultiPart, each part is parsed and its content...
The vulnerability of the XStream Java library for converting objects to XML or JSON format is related to stack overflow conditions. This allows an attacker to cause a service failure.
The vulnerability of the XStream library for converting objects to XML or JSON format is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to cause a service failure remotely...
untangle 代码问题漏洞
untangle is a package from the individual developer Christian Stefanescu in Germany. It is used to convert XML to Python objects. A code issue vulnerability exists in untangle that stems from insufficient validation of user-supplied XML input...
The vulnerability of the Xstream Java library for converting objects to XML or JSON format arises from the lack of measures taken to eliminate special elements used in operating system commands. This allows attackers to delete any known files on the host.
The vulnerability of the Java library for converting objects to XML or JSON format, Xstream, exists because measures to neutralize special elements used in the operating system command are not taken. Exploiting this vulnerability can allow a malicious actor to delete any known files on the host...
. NET advanced code audit(the first lesson)XmlSerializer deserialization vulnerability-vulnerability warning-the black bar safety net
在.NET in the framework of the XmlSerializer class is a great tool, it is a highly structured XML data is mapped to . NET objects. The XmlSerializer class in the program through a single API call to perform the XML document and the object conversion between. The conversion mapping rules in the . N...
CVE-2016-7881
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the MovieClip class when handling conversion to an object. Successful exploitation could lead to arbitrary code execution...
flash-plugin: multiple code execution issues fixed in APSB16-39
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the MovieClip class when handling conversion to an object. Successful exploitation could lead to arbitrary code execution...
PT-2016-2947 · Adobe +3 · Flash Player +3
Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 23.0.0.207 and earlier Adobe Flash Player versions 11.2.202.644 and earlier Description: The issue is related to an exploitable use after free vulnerability in the MovieClip class when handling conversion to an...