6 matches found
DEBIAN-CVE-2025-68480
Marshmallow is a lightweight library for converting complex objects to and from simple Python datatypes. In versions from 3.0.0rc1 to before 3.26.2 and from 4.0.0 to before 4.1.2, Schema.loaddata, many=True is vulnerable to denial of service attacks. A moderately sized request can consume a...
PT-2024-40171 · Propel · Propel
Name of the Vulnerable Software and Affected Versions: Propel versions 1.x through 3.x Description: The limit query method in Propel is susceptible to catastrophic SQL injection when used with MySQL. This occurs due to a lack of integer casting of the limit input in either...
CVE-2023-39167
In SENEC Storage Box V1,V2 and V3 an unauthenticated remote attacker can obtain the devices' logfiles that contain sensitive data...
PYSEC-2022-269
OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker providing malicious redirect uri can cause denial of service. An attacker can also leverage usage of urivalidate functions depending where it is used. OAuthLib...
TP-LINK TL-WR741N和TP-LINK TL-WR742N 安全漏洞
TP-LINK TL-WR741N and TP-LINK TL-WR742N are both wireless routers from China P&L TP-LINK. A security vulnerability exists in TP-LINK TL-WR741N/TL-WR742N V1/V2/V3130415 versions. An attacker could exploit this vulnerability to cause a denial of service DoS via specially crafted packets...
NASA Pyblock Radar data parsing library code execution vulnerability
NASA Pyblock is a Python module for estimating partial beam blocking using polarized radar data.Radar data parsing library is one of the radar data parsing libraries. A security vulnerability exists in the Radar data parsing library in NASA Pyblock versions 1.0 through 1.3. A remote attacker can...