676 matches found
PT-2023-31016 · Openlink +1 · Openlink Virtuoso-Opensource +1
Name of the Vulnerable Software and Affected Versions: openlink virtuoso-opensource version 7.2.11 Description: The issue in the box div function allows attackers to cause a Denial of Service DoS after running a SELECT statement. Recommendations: For openlink virtuoso-opensource version 7.2.11,...
CVE-2023-48946
An issue in the boxmpy function of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS after running a SELECT statement...
CVE-2023-48949
An issue in the boxadd function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS after running a SELECT statement...
CVE-2023-48952
An issue in the boxdeserializereusing function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS after running a SELECT statement...
CVE-2023-48947
CVE-2023-48947 affects openlink virtuoso-opensource v7.2.11. The cha_cmp function vulnerability can cause a Denial of Service after executing a SELECT, as described across multiple feeds (NVD, Debian/OSV, Ubuntu Nessus). Connected documents do not provide concrete exploit vectors or patch/version...
CVE-2023-48949
The evidence in the connected documents confirms a concrete vulnerability in openlink virtuoso-opensource v7.2.11 affecting the box_add function, which can lead to a Denial of Service after executing a SELECT statement. Affected component: virtuoso-opensource 7.2.11 (box_add). Root cause details ...
CVE-2023-48945
A stack overflow in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS via crafted SQL statements...
CVE-2023-48947
An issue in the chacmp function of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS after running a SELECT statement...
CVE-2023-48950
An issue in the boxcollen function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS after running a SELECT statement...
CVE-2023-48950
CVE-2023-48950 describes a vulnerability in the box_col_len function of openlink Virtuoso Open-Source Edition (product: Virtuoso Open-Source, component: box_col_len function, vulnerable version: 7.2.11) that allows a Denial of Service after executing a SELECT statement. The provided connected doc...
CVE-2023-48948
CVE-2023-48948 affects openlink virtuoso-opensource v7.2.11. The vulnerability is in the box_div function and can cause a Denial of Service after executing a SELECT statement. The connected sources provide concrete details (affected product and function) and note the impact as DoS with a network ...
CVE-2023-48948
An issue in the boxdiv function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS after running a SELECT statement...
CVE-2023-48952
An issue in the boxdeserializereusing function in openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service DoS after running a SELECT statement...
A Bootiful Podcast: iText Creator Bruno Lowagie
Hi, Spring fans! We're releasing Spring Boot 3.2 today! And it's Thanksgiving in the USA Happy Thanksgiving!. So, we wanted to celebrate with an amazing episode, and so today's guest is opensource legend Bruno Lowagie. Enjoy!...
PT-2023-9516 · Openlink +4 · Virtuoso-Opensource +4
Name of the Vulnerable Software and Affected Versions: openlink virtuoso-opensource version 7.2.11 Description: The issue is related to the incorrect implementation of the sequence of actions in the cha cmp component of the Virtuoso-opensource web application development platform. Exploitation of...
EmploLeaks - Finding Leaked Employees Info for the Win
Developed by Faraday security researchers, this cutting-edge tool utilizes the power of OpenSource Intelligence techniques. EmploLeaks extracts valuable insights by scouring various platforms, to compile a comprehensive list of employees associated with a given company and cross-reference these...
CVE-2023-37461
CVE-2023-37461 affects Metersphere. The vulnerability arises from uploaded files that may set a related type to a relative path such as ../../../../, enabling a path-traversal that could overwrite or create files within the metersphere process’ accessible filesystem. This is constrained to files ...
CVE-2023-31631
An issue in the sqlopredscontradiction component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service DoS via crafted SQL statements...
CVE-2023-31630
An issue in the sqloqueryspec component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service DoS via crafted SQL statements...
CVE-2023-31629
An issue in the sqlounionscope component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service DoS via crafted SQL statements...