org.apache.camel:camel-web-standalone (>=2.0-M1 <=2.2.0), org.mortbay.hightide.example:auction (=6.1H.24) +16 more potentially affected by CVE-2020-27216 via org.mortbay.jetty:jetty-webapp (>=7.0.0.pre4 <=7.0.0.pre5)

org.mortbay.jetty:jetty-webapp MAVEN version =7.0.0.pre4, =2.0-M1, =7.0.0.pre4, =7.0.0.pre4, =7.0.0.pre4, =7.0.0.pre4, =7.0.0.pre4, =7.0.0.pre4, =7.0.0.pre4, =7.0.0.pre4, =7.0.0.pre4, =7.0.0.pre4, =7.0.0.pre4, =7.0.0.pre5 and more Source cves: CVE-2020-27216 Source advisory: OSV:GHSA-G3WG-6MCF-8J...

OpenBiblio 0.x theme_del_confirm.php name Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27053/info OpenBiblio is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include SQL-injection, cross-site scripting, HTML-injection, and local...

OpenBiblio 0.x staff_del_confirm.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27053/info OpenBiblio is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include SQL-injection, cross-site scripting, HTML-injection, and local...

Code injection

geo-code in gpsdrive-scripts 2.10pre4 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/geo.google, 2 /tmp/geo.yahoo, 3 /tmp/geo.coords, and 4 /tmp/geo.coords temporary files...

OpenBiblio 0.x - theme_del_confirm.php?name Cross-Site Scripting

OpenBiblio 0.x - themedelconfirm.php?name Cross-Site Scripting source: https://www.securityfocus.com/bid/27053/info OpenBiblio is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include SQL-injection, cross-site scripting...

CVE-2002-2060

CVE-2002-2060 affects Links 2.0 pre4. The vulnerability is a buffer overflow in the PNG gamma table handling (large 16-bit PNG images), allowing remote network-triggered crashes and potential arbitrary code execution in affected client browsers. Connected sources confirm the same description acro...

CVE-2002-2060

Buffer overflow in Links 2.0 pre4 allows remote attackers to crash client browsers and possibly execute arbitrary code via gamma tables in large 16-bit PNG images...

DEBIAN-CVE-2004-0433

Multiple buffer overflows in the Real-Time Streaming Protocol RTSP client for 1 MPlayer before 1.0pre4 and 2 xine lib xine-lib before 1-rc4, when playing Real RTSP realrtsp streams, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long URLs, b lo...