21 matches found
EUVD-2008-6940
Malware in sbrugna...
EUVD-2002-0442
Malware in sbrugna...
Tenda i22 安全漏洞
Tenda i22 is a wireless access point from Tenda China. A security vulnerability exists in Tenda i22 version 1.0.0.3, which originates from a stack buffer overflow due to an incorrect operation of the parameter Type...
WeGIA Cross-Site Scripting Vulnerability (CNVD-2025-17253)
WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the parameter err in the file personalizacaoimagem.php, for which no detailed vulnerability details are...
Lingdang CRM 安全漏洞
Lingdang CRM Lingdang CRM is a customer relationship management system from Lingdang, China. A security vulnerability exists in Lingdang CRM version 8.6.0.0 and prior versions, which stems from an incorrect operation of the parameter name that can lead to unrestricted uploads...
CVE-2024-36735
OneFlow-Inc. Oneflow v0.9.1 does not display an error or warning when the oneflow.eye parameter is floating...
kernel: LSM: general protection fault in legacy_parse_param
In the Linux kernel, the following vulnerability has been resolved: LSM: general protection fault in legacyparseparam The usual LSM hook "bail on fail" scheme doesn't work for cases where a security module may return an error code indicating that it does not recognize an input. In this particular...
Incorrect parameter for allowedBorrow when repaying
Lines of code Vulnerability details Impact Incorrect parameter for allowedBorrow check during repayment in BigBang requires an approval that is orders of magnitudes higher than the intended amount if Alice wants to allow Bob to use their funds. This can be abused by Bob to take more collateral or...
Axiell Iguana CMS 安全漏洞
Axiell Iguana CMS is a control-based platform from Axiell Inc. for personalizing and communicating with customers. Axiell Iguana CMS has a security vulnerability that originates from an input error in the url parameter on imageProxy.type.php. An attacker exploiting the vulnerability is able to...
UBUNTU-CVE-2021-3638
An out-of-bounds memory access flaw was found in the ATI VGA device emulation of QEMU. This flaw occurs in the ati2dblt routine while handling MMIO write operations when the guest provides invalid values for the destination display parameters. A malicious guest could use this flaw to crash the QE...
CVE-2021-44391
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality of reolink RLC-410W v3.0.0.13620121102. A specially-crafted HTTP request can lead to a reboot. GetEnc param is not object. An attacker can send an HTTP request to trigger this vulnerability...
Incorrect parameters passed while adding new staking fund
Handle hack3r-0m Vulnerability details initializeMarket can be called with different marketIndex each time while calling IStakerstaker.addNewStakingFund with the same parameters resulting in overriding of mapping in the staker contract and hence removing past staking funds. latestMarket should be...
Siemens JT Utilities 安全漏洞
Siemens JT Utilities is a software application from Siemens Germany. An unspecified vulnerability exists in Siemens JT Utilities, which originates when parsing a specially designed JT file, calling a hash function with incorrect parameters can cause the application to crash. An attacker could use...
Mail.ru: [xss] passrestore на m/touch/tel
Reflected XSS in touch.mail.ru, m.mail.ru, light.mail.ru, tel.mail.ru via GET parameter error...
DEBIAN-CVE-2019-5824
Parameter passing error in media in Google Chrome prior to 74.0.3729.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
chromium-browser: parameter passing error in media player leading to unauthorized access
Parameter passing error in media in Google Chrome prior to 74.0.3729.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Citrix Provisioning Console Error: 0x00000057 - Invalid Parameter
Citrix Provisioning does not support VHD based vDisks on 4K storage in any Citrix Provisioning product version. Microsoft's VHD file specification only supports a disk logical sector size of 512 bytes. A read/write access VHD on 4K disk will trigger read-modify-write emulation, which results in...
WEM admin console fails to connect with error: Error while connecting to the specified Infrastructure Server
The WEM Administration Console errors out while connecting to the broker with a generic error: "Error while connecting to the specified Infrastructure Server". Looking into the the WEM admin console debug logs %userprofile%\Citrix WEM Console Trace.Log the following error is reported: Exception -...
CVE-2009-4196
Multiple cross-site scripting XSS vulnerabilities in multiple scripts in Forms/ in Huawei MT882 V100R002B020 ARG-T running firmware 3.7.9.98 allow remote attackers to inject arbitrary web script or HTML via the 1 BackButton parameter to error1; 2 wzConnFlag parameter to freshpppoe1; 3...
CVE-2004-1607
slxweb.dll in SalesLogix 6.1 allows remote attackers to obtain sensitive information via a 1 Library or 2 Attachment request with an invalid file parameter, which reveals the path in an error message...