Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF. An attacker can access internal resources, exfiltrate sensitive information, or perform unauthorized actions by sending crafted requests to internal or protected endpoints. Note: This is only exploitabl...

Files or Directories Accessible to External Parties

Overview Affected versions of this package are vulnerable to Files or Directories Accessible to External Parties due to improper restriction of file read. An attacker can obtain sensitive information by sending crafted requests to exposed resources. Note: This is only exploitable if the attacker...

CVE-2025-59358

The Chaos Controller Manager in Chaos Mesh exposes a GraphQL debugging server without authentication to the entire Kubernetes cluster, which provides an API to kill arbitrary processes in any Kubernetes pod, leading to cluster-wide denial of service...

Inductive Automation Ignition 访问控制错误漏洞

Inductive Automation Ignition is a suite of integrated software platforms for SCADA systems from Inductive Automation, Inc. The platform supports SCADA data acquisition and monitoring systems, HMI human machine interface, and more. Inductive Automation Ignition has a security vulnerability that...

Iblessing - An iOS Security Exploiting Toolkit, It Mainly Includes Application Information Collection, Static Analysis And Dynamic Analysis

iblessing iblessing is an iOS security exploiting toolkit, it mainly includes application information collection , static analysis and dynamic analysis. iblessing is based on unicorn engine and capstone engine. Features Cross-platform: Tested on macOS and Ubuntu. iOS App static info extract,...

CouchDB未授权访问导致的任意系统命令执行漏洞

详情来源：阿里云安全 0x01 漏洞的来龙去脉 CouchDB 是一个开源的面向文档的数据库管理系统，可以通过 RESTful JavaScript Object Notation JSON API 访问。CouchDB会默认会在5984端口开放Restful的API接口，用于数据库的管理功能。 那么，问题出在哪呢？翻阅官方描述会发现，CouchDB中有一个QueryServer的配置项，在官方文档中是这么描述的： CouchDB delegates computation of design documents functions to external query servers...

Unreal Tournament 2004 - "Secure" Overflow

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

HP Application Information Optimizer Archive Query Server组件任意代码执行漏洞

BUGTRAQ ID: 64557 CVECAN ID: CVE-2013-6189 HP Application Information Optimizer 数据库软件可用智能数据管理和存储将结构化数据占用空间降至最低，并实现应用信息价值最大化。 HP Application Information Optimizer 6.2, 6.3, 6.4, 7.0版本在Archive Query Server组件的实现中存在安全漏洞，可使攻击者在受影响应用上下文中执行任意代码。 0 HP Application Information Optimizer 7.0 HP Application...

Code injection

Unspecified vulnerability in the Archive Query Server in HP Application Information Optimizer formerly HP Database Archiving 6.2, 6.3, 6.4, and 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1666...

CVE-2013-6189

Unspecified vulnerability in the Archive Query Server in HP Application Information Optimizer formerly HP Database Archiving 6.2, 6.3, 6.4, and 7.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1666...

Unreal Tournament 2004 "secure" Overflow (Win32)

This is an exploit for the GameSpy secure query in the Unreal Engine. This exploit only requires one UDP packet, which can be both spoofed and sent to a broadcast address. Usually, the GameSpy query server listens on port 7787, but you can manually specify the port as well. The RunServer.sh scrip...