36 matches found
PT-2024-23818 · Open Networking Foundation · Libfluid
Name of the Vulnerable Software and Affected Versions: libfluid version 0.1.0 Description: The issue is an Out-of-bounds Read vulnerability in the Open Networking Foundation ONF libfluid, specifically in the libfluid msg modules. It is associated with the program routines fluid...
PT-2024-29342 · Tenda · Tenda W15E
Name of the Vulnerable Software and Affected Versions: Tenda W15E version 15.11.0.14 Description: A critical issue was found in the function guestWifiRuleRefresh. The manipulation of the argument qosGuestDownstream leads to a stack-based buffer overflow. This issue can be exploited remotely. The...
PT-2024-21488 · Unknown · Campcodes Online Job Finder System
Name of the Vulnerable Software and Affected Versions: Campcodes Online Job Finder System version 1.0 Description: A critical issue affects some unknown functionality of the file /admin/user/controller.php. The manipulation of the UESRID argument leads to SQL injection. This issue can be exploite...
CVE-2024-1262
A vulnerability, which was classified as critical, has been found in Juanpao JPShop up to 1.5.02. This issue affects the function actionUpdate of the file /api/controllers/merchant/design/MaterialController.php of the component API. The manipulation of the argument picurl leads to unrestricted...
PT-2024-15939 · Unknown · Stanfordvl Gibsonenv +1
Name of the Vulnerable Software and Affected Versions: StanfordVL GibsonEnv version 0.3.1 Description: A critical issue has been found, affecting the cloudpickle.load function of the file gibsonutilspposgd fuse.py. This issue leads to deserialization and can be exploited remotely. The complexity ...
PT-2023-30858 · Ibos Oa · Ibos Oa
Name of the Vulnerable Software and Affected Versions: IBOS OA version 4.5.5 Description: A critical issue has been found in the software, affecting some unknown functionality of the file ?r=file/dashboard/trash&op=del. The manipulation of the argument fids leads to SQL injection. The attack may ...
PT-2023-26007 · Unknown · Creativeitem Academy Lms
Name of the Vulnerable Software and Affected Versions: Creativeitem Academy LMS version 5.15 Description: A vulnerability was found in the software, affecting some unknown functionality of the file /home/courses. The manipulation of the sort by argument leads to cross-site scripting. The attack m...
PT-2023-25723 · Livelyworks · Livelyworks Articart
Name of the Vulnerable Software and Affected Versions: LivelyWorks Articart version 2.0.1 Description: A problematic issue was found in the Base64 Encoding Handler component, specifically affecting some unknown functionality of the file /change-language/de DE. The manipulation of the redirectTo...
PT-2023-18228 · Unknown · Campcodes Online Thesis Archiving System
Name of the Vulnerable Software and Affected Versions: Campcodes Online Thesis Archiving System version 1.0 Description: A critical issue has been found in the system, affecting an unknown functionality of the file classes/Master.php. The manipulation of the name argument leads to SQL injection...
PT-2023-16586 · Sourcecodester · Sourcecodester Online Pizza Ordering System
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Pizza Ordering System version 1.0 Description: A critical issue has been discovered, affecting the file /php-opos/index.php. The manipulation of the ID argument leads to SQL injection. This issue can be exploited remotel...
USN-4146-1 clamav vulnerabilities
It was discovered that ClamAV incorrectly handled unpacking ZIP files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2019-12625 It was discovered that ClamAV incorrectly handled unpacking bzip2 files. A remote attacker could use th...
Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the libopenssl100-32bit package of the OpenSUSE operating system can be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
[SECURITY] [DSA 584-1] New dhcp packages fix format string vulnerability
-------------------------------------------------------------------------- Debian Security Advisory DSA 584-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2004 http://www.debian.org/security/faq -...
Debian DSA-071-1 : fetchmail - memory corruption
Salvatore Sanfilippo found two remotely exploitable problems infetchmail while doing a security audit. In both the IMAP code and the POP3 code, the input isn't verified even though it's used to store a number in an array. Since no bounds checking is done this can be used by an attacker to write...
[SECURITY] [DSA-383-1] OpenSSH buffer management fix
------------------------------------------------------------------------ Debian Security Advisory DSA-383-1 [email protected] http://www.debian.org/security/ Wichert Akkerman September 17, 2003 - ------------------------------------------------------------------------ Package : ssh-krb5...
[SECURITY] [DSA 179-1] New gnome-gv packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 179-1 [email protected] http://www.debian.org/security/ Martin Schulze October 18th, 2002 http://www.debian.org/security/faq -...