255 matches found
The vulnerability of the ezxml_ent_ok function in the XML document syntax analysis library ezXML allows a attacker to cause a service failure.
The vulnerability of the ezxmlentok function in the XML document syntax analysis library ezXML is related to an uncontrolled recursion. Exploiting this vulnerability allows a malicious actor to cause service failures through a specially created XML file...
Medium: rust
Issue Overview: Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, making it available to the Rust projects it builds. To reco rd when an extraction is successful, Cargo writes "ok" to the...
SUSE CVE-2019-20919
An issue was discovered in the DBI module before 1.643 for Perl. The hvfetch documentation requires checking for NULL and the code does that. But, shortly thereafter, it calls SvOKprofile, causing a NULL pointer dereference...
ok-bergbahnen.com Cross Site Scripting vulnerability OBB-3049245
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der.
...
DEBIAN-CVE-2022-36113
Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, making it available to the Rust projects it builds. To record when an extraction is successful, Cargo writes "ok" to the .cargo-ok file at the...
UBUNTU-CVE-2022-36113
Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, making it available to the Rust projects it builds. To record when an extraction is successful, Cargo writes "ok" to the .cargo-ok file at the...
CVE-2022-36113 Extracting malicious crates can corrupt arbitrary files
Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, making it available to the Rust projects it builds. To record when an extraction is successful, Cargo writes "ok" to the .cargo-ok file at the...
CVE-2022-36719
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the ok parameter at /admin/history.php...
CVE-2022-36719
Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the ok parameter at /admin/history.php...
PT-2022-23580 · Unknown · Library Management System
Name of the Vulnerable Software and Affected Versions: Library Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the ok parameter at the "/admin/history.php" API endpoint. Recommendations: For Library Manageme...
Malicious code in nishant-ok-angularjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f2e140476dbeb0aeb5aca6d3d4448c7ddfd3e9828d6be965517c8619e6563e9b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview nishant-ok-angularjs is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...
Malicious code in deneuve-package-ok (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9c04436786a198745e54118ae2037fa2d77222f85d62ff9bda812919ce324450 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2418 Malicious code in deneuve-package-ok (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9c04436786a198745e54118ae2037fa2d77222f85d62ff9bda812919ce324450 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ok-messenger-emoji (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04de26831924657f1e3bb1783bac5174d96a3e54b4a2297537f17aa065439f66 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ok-message-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5a80a6a3a1ffdd474bf80a592d152a61ed541b41acd3be180d2c1bd91be1fb7f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5047 Malicious code in ok-messenger-emoji (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04de26831924657f1e3bb1783bac5174d96a3e54b4a2297537f17aa065439f66 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ok-messenger-model (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7bcdfc9b070b703c4308d68ecabf68a9973d878d832021df11f5fd788327178 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5048 Malicious code in ok-messenger-model (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7bcdfc9b070b703c4308d68ecabf68a9973d878d832021df11f5fd788327178 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...