5 matches found
CVE-2025-10226 PostgreSQL Upgrade from v10 to v17.4 in AxxonSoft Axxon One (C-Werk) 2.0.8 and earlier to Address Multiple Vulnerabilities
Dependency on Vulnerable Third-Party Component CWE-1395 in the PostgreSQL backend in AxxonSoft Axxon One C-Werk 2.0.8 and earlier on Windows and Linux allows a remote attacker to escalate privileges, execute arbitrary code, or cause denial-of-service via exploitation of multiple known CVEs presen...
CVE-2025-6189
The Duplicate Page and Post plugin for WordPress is vulnerable to time-based SQL Injection via the ‘metakey’ parameter in all versions up to, and including, 2.9.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes i...
Zincati 安全漏洞
Zincati is a Fedora CoreOS auto-update agent program from CoreOS Open Source. A security vulnerability exists in Zincati versions prior to v0.0.24 through v0.0.30, which stems from a logic error that could lead to the deployment of older versions by arbitrary users...
GPAC 安全漏洞
GPAC is an open source multimedia framework. A security vulnerability exists in versions prior to GPAC v2.3.0-DEV, which stems from a difference-one error...
CVE-2022-22786 Update package downgrade in Zoom Client for Meetings for Windows
The Zoom Client for Meetings for Windows before version 5.10.0 and Zoom Rooms for Conference Room for Windows before version 5.10.0, fails to properly check the installation version during the update process. This issue could be used in a more sophisticated attack to trick a user into downgrading...