MLFlow < 2.8.1 - Sensitive Information Disclosure

An issue in MLFlow versions 2.8.1 and before allows a remote attacker to obtain sensitive information via a crafted request to REST API. id: CVE-2023-43472 info: name: MLFlow 2.8.1 - Sensitive Information Disclosure author: ritikchaddha severity: high description: | An issue in MLFlow versions...

CVE-2026-45090

Dalfox is a powerful open-source XSS scanner and utility focused on automation. Prior to 2.13.0, ParameterAnalysis in pkg/scanning/parameterAnalysis.go runs two sequential worker stages that both write to the same results channel. The channel is correctly closed after the first stage completes...

CVE-2025-5079

A flaw has been found in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/updateorder.php. Executing manipulation of the argument remark can lead to sql injection. The attack may be performed from remote. The exploit ha...

CVE-2025-28398

D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsecnetasp function via the remotip parameter...

CVE-2023-24905

Remote Desktop Client Remote Code Execution Vulnerability...

Important: spice-gtk

Issue Overview: Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system. Both the SPICE client spice-gtk and server are affected by these flaws. These flaws allow a malicious client or server to send specially crafted messages that...

Duhok Forum 1.1 - Arbitrary File Upload

Duhok Forum 1.1 - Arbitrary File Upload ============================================== Duhok Forum Remot upload Vulnerability ============================================== Exploit Title: Duhok Forum Remot upload Shell Vulnerability Date: 30-11-2010 Author: BrOx-Dz email : [email protected] Softwar...