14 matches found
Command Injection
Overview dreamfactory/df-core is a DreamFactorytm Core Components Affected versions of this package are vulnerable to Command Injection via the saveZipFile function in the Components/Package/Package.php file. An attacker can execute arbitrary code in the context of the service account by supplyin...
EUVD-2025-28851
Malicious code in bioql PyPI...
CVE-2024-8925 affecting package php for versions less than 8.3.12-1
CVE-2024-8925 affecting package php for versions less than 8.3.12-1. A patched version of the package is available...
CVE-2024-3096 affecting package php for versions less than 8.3.6-1
CVE-2024-3096 affecting package php for versions less than 8.3.6-1. A patched version of the package is available...
CVE-2021-21705 affecting package php 7.4.14-3
CVE-2021-21705 affecting package php 7.4.14-3. This CVE either no longer is or was never applicable...
CVE-2021-21708 affecting package php 7.4.14-3
CVE-2021-21708 affecting package php 7.4.14-3. This CVE either no longer is or was never applicable...
CVE-2022-31626 affecting package php 7.4.14-3
CVE-2022-31626 affecting package php 7.4.14-3. This CVE either no longer is or was never applicable...
CVE-2024-12949
A vulnerability was found in code-projects Travel Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /package.php. The manipulation of the argument subcatid leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2024-8929 vulnerabilities
Vulnerabilities for packages: php...
CVE-2024-9026 affecting package php for versions less than 8.1.30-1
CVE-2024-9026 affecting package php for versions less than 8.1.30-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-1874 affecting package php for versions less than 8.3.8-1
CVE-2024-1874 affecting package php for versions less than 8.3.8-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-5458 vulnerabilities
Vulnerabilities for packages: php...
CVE-2023-0567 affecting package php for versions less than 8.1.16-1
CVE-2023-0567 affecting package php for versions less than 8.1.16-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-37454 affecting package php for versions less than 8.1.12-1
CVE-2022-37454 affecting package php for versions less than 8.1.12-1. An upgraded version of the package is available that resolves this issue...