MAL-2025-12972 Malicious code in @zalastax/nolb-pars (npm)

The package @zalastax/nolb-pars was found to contain malicious code...

Malicious code in @zalastax/nolb-pars (npm)

The package @zalastax/nolb-pars was found to contain malicious code...

pars-ref.ir Improper Access Control vulnerability OBB-3838837

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Google Android 缓冲区错误漏洞

Google Android is a Linux-based open source operating system from Google, Inc. A buffer overflow vulnerability exists in avrcparsct.cc in avrcctrlparsvendorrsp, due to a lack of boundary checking. an out-of-bounds read may occur. An attacker could exploit this vulnerability to cause a remote...

CVE-2021-0316

In avrcparsvendorcmd of avrcparstg.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions:...

CVE-2020-0185

In avrcparsbrowsingcmd of avrcparstg.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Androi...

Digi AnywhereUSB 14 - Reflective Cross-Site Scripting

Digi AnywhereUSB 14 - Reflective Cross-Site Scripting Exploit Title: Digi AnywhereUSB 14 - Reflective Cross-Site Scripting Date: 2019-11-10 Exploit Author: Raspina Net Pars Group Vendor Homepage: https://www.digi.com/products/networking/usb-connectivity/usb-over-ip/awusb Version: 1.93.21.19 CVE :...

Digi AnywhereUSB 14 - Reflective Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Digi AnywhereUSB 14 - Reflective Cross-Site Scripting Exploit Author: Raspina Net Pars Group Vendor Homepage: https://www.digi.com/products/networking/usb-connectivity/usb-over-ip/awusb Version: 1.93.21.19 CVE : CVE-2019-18859 P...

Digi AnywhereUSB 14 - Reflective Cross-Site Scripting

Exploit Title: Digi AnywhereUSB 14 - Reflective Cross-Site Scripting Date: 2019-11-10 Exploit Author: Raspina Net Pars Group Vendor Homepage: https://www.digi.com/products/networking/usb-connectivity/usb-over-ip/awusb Version: 1.93.21.19 CVE : CVE-2019-18859 PoC GET...

Digi AnywhereUSB 14 Cross Site Scripting

Exploit Title: Digi AnywhereUSB 14 - Reflective Cross-Site Scripting Date: 2019-11-10 Exploit Author: Raspina Net Pars Group Vendor Homepage: https://www.digi.com/products/networking/usb-connectivity/usb-over-ip/awusb Version: 1.93.21.19 CVE : CVE-2019-18859 PoC GET...

CVE-2017-13281

In avrcparsbrowsingcmd of avrcparstg.cc, there is a possible stack buffer overflow due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1...

Google Android System Remote Code Execution Vulnerability (CNVD-2018-07666)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A stack buffer overflow vulnerability exists in the avrcparsbrowsingcmd file of the avrcparstg.cc file in Android versions 8.0 and 8.1, which stems from the program's failure to...

Google Android System Remote Code Execution Vulnerability (CNVD-2018-07453)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A remote code execution vulnerability exists in the avrcparsvendorcmd of the avrcparstg.cc file in Android, which stems from a lack of boundary detection in the program. A remote...

pars-disa.ir XSS vulnerability

Open Bug Bounty ID: OBB-571394 Description| Value ---|--- Affected Website:| pars-disa.ir Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Resaneh Pardaz Pars SQL Injection Vulnerability

Resaneh Pardaz Pars is a web solution product from parsmedia. An SQL injection vulnerability exists in the id parameter of the category.php page of Resaneh Pardaz Pars, which can be exploited by an attacker to compromise the application, access or modify data, or exploit a potential vulnerability...

Pars CMS 'RP' Parameter Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38734/info Pars CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

Pars Design CMS Arbitrary File Upload

No description provided by source. Securitylab.ir Application Info: Name: Pars Design Vendor: http://Parsdata.com Vulnerability Info: Type: Remote Arbitrary File Upload Risk: High Vulnerability: http://site.ir/editorv2/editor/filemanager/upload/test.html Uploaded Here:...

Vastal I-Tech SQL Injection Vulnerability

No description provided by source. IN THE NAME OF GOD Vastal I-Tech SQL Injection Vulnerability Author : HELLBOY Tested on Lunix CVE : N/A Email : [email protected] Dork : inurl:viewgroup.php?groupid= Exploit : http://site/viewgroup.php?groupid=SQLI EXAM:...

Pars IT Group SQL Injection Vulnerability

Exploit for php platform in category web applications + pars it sql injection + Portal Name : pars it + software : http://www.it-pars.com/?l=fa&p=st + by : d3c0der + Contact : email protected - d3c0der.blogspot.com + special tnx : attackerz.ir , phc.ir...

Pars Design Shell Upload

Securitylab.ir Application Info: Name: Pars Design Vendor: http://Parsdata.com Vulnerability Info: Type: Remote Arbitrary File Upload Risk: High Vulnerability: http://site.ir/editorv2/editor/filemanager/upload/test.html Uploaded Here: http://site.ir//UserFiles/shell.aspx Discoverd By:...