CVE-2019-7364

CVE-2019-7364 describes a DLL preloading vulnerability in Autodesk products (2017–2020 Autodesk Advanced Steel, Civil 3D, AutoCAD and related tools; plus AutoCAD P&ID 2017). The issue allows an attacker to cause code execution by persuading a user to open a malicious DWG file that leverages the D...

CVE-2019-7359

An exploitable heap overflow vulnerability in the AcCellMargin handling code in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk AutoCAD MEP 2018,...

CVE-2019-7360

CVE-2019-7360 describes an exploitable use-after-free in the DXF-parsing logic of Autodesk AutoCAD 2018 family (Advance Steel, AutoCAD, Civil 3D, etc.). The root cause is a memory-management flaw in the LinetypeTableRecord handling: when the file indicates a zero-length Elements field, an allocat...

CVE-2018-20480

An issue was discovered in S-CMS 1.0. It allows SQL Injection via the js/pic.php Pid parameter...

CVE-2010-2016

SQL injection vulnerability in details.php in Iceberg CMS allows remote attackers to execute arbitrary SQL commands via the pid parameter...