CVE-2025-62611

aiomysql is a library for accessing a MySQL database from the asyncio. Prior to version 0.3.0, the client-side settings are not checked before sending local files to MySQL server, which allows obtaining arbitrary files from the client using a rogue server. It is possible to create a rogue MySQL...

PT-2024-34841 · Unknown · Digfish Geotagged Media

Name of the Vulnerable Software and Affected Versions: Digfish Geotagged Media versions prior to 0.3.0 Description: The issue is related to improper neutralization of input during web page generation, leading to a Cross-site Scripting XSS vulnerability. This allows for Reflected XSS attacks...

SAMSUNG mTower 输入验证错误漏洞

SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability in SAMSUNG mTower versions prior to 0.3.0, which stems from an incorrect input validation vulnerability in its teeobjfree function, allows a trusted application to trigger a denial of...

TypeORM SQL注入漏洞

TypeORM TypeORM is an excellent Node.js ORM framework. The goal of the software is to maintain support for the latest Javascript features; with the following features: 1 to provide one-to-one, many-to-one, one-to-many, many-to-many relational processing of tables; 2 to help develop a variety of...