ALPINE-CVE-2020-16304

A buffer overflow vulnerability in imagerendercolorthresh in base/gxicolor.c of Artifex Software GhostScript v9.18 to v9.50 allows a remote attacker to escalate privileges via a crafted eps file. This is fixed in v9.51...

DEBIAN-CVE-2020-16304

A buffer overflow vulnerability in imagerendercolorthresh in base/gxicolor.c of Artifex Software GhostScript v9.18 to v9.50 allows a remote attacker to escalate privileges via a crafted eps file. This is fixed in v9.51...

vBulletin CVE-2019-16759 Bypass Remote Code Execution (CVE-2020-17496) (direct check)

The version of vBulletin running on the remote host is affected by an input-validation flaw in the ajax/render/widgetphp API that allows for remote code execution. This plugin tests for a bypass to the fix for CVE-2019-16759. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

GHSA-CR3X-7M39-C6JQ Remote code execution via user-provided local names in ActionView

The is a code injection vulnerability in versions of Rails prior to 5.0.1 that would allow an attacker who controlled the locals argument of a render call to perform a RCE...

CVE-2020-8163

The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the locals argument of a render call to perform a RCE...

UBUNTU-CVE-2020-8163

The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the locals argument of a render call to perform a RCE...

PT-2020-5621 · Ruby · Ruby On Rails

Name of the Vulnerable Software and Affected Versions: Ruby on Rails versions prior to 5.0.1 Description: The issue is a code injection vulnerability that allows an attacker who controls the locals argument of a render call to perform a remote code execution RCE. This vulnerability is related to ...

Remote Code Execution

actionview is vulnerable to remote code execution. User-provided local names are not validated and sanitiized before being passed to a render call. An attacker would be able to execute arbitrary code if the locals argument can be controlled...

Remote Code Execution (RCE)

Overview actionview is a simple, battle-tested conventions and helpers for building web pages. Affected versions of this package are vulnerable to Remote Code Execution RCE. An attacker might be able to control the locals argument of a render call. Note: It doesn't affect applications that don't...

PT-2020-3605 · WordPress · Wordpress

Name of the Vulnerable Software and Affected Versions: WordPress versions prior to 5.4.1 WordPress versions 5.3.3, 5.2.6, 5.1.5, 5.0.9, 4.9.14, 4.8.13, 4.7.17, 4.6.18, 4.5.21, 4.4.22, 4.3.23, 4.2.27, 4.1.30, 4.0.30, 3.9.31, 3.8.33, 3.7.33 Description: The issue is related to the render block core...

Denial Of Service (DoS)

X.Org is vulnerable to Denial of Service DoS. Due to an incorrect calculation flaw in the X.Org Render extension, a malicious, authorized client can crash the X.Org server or, potentially, execute arbitrary code with root privileges...

Denial Of Service (DoS)

xorg-x11-server is vulnerable to denial of service. Multiple integer overflow flaws were found in X.org's Render extension. A malicious authorized client could exploit these issues to cause a denial of service crash or, potentially, execute arbitrary code with root privileges on the X.Org server...

evince: uninitialized memory use in function tiff_document_render() and tiff_document_get_thumbnail()

The tiffdocumentrender and tiffdocumentgetthumbnail functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented, leading to uninitialized memory use when processing certain TIFF image files...

PT-2019-6156 · Htmldoc +2 · Htmldoc +2

Name of the Vulnerable Software and Affected Versions: htmldoc version 1.9.7 Description: The issue is related to a buffer overflow in the hd strlcpy function, which can be exploited by a remote attacker to access confidential data, compromise data integrity, and cause a denial of service. This c...

freetype2:cff-render-ftengine: Invalid-builtin-use in FT_Outline_Get_Orientation

Detailed Report: https://oss-fuzz.com/testcase?key=5735696199581696 Project: freetype2 Fuzzing Engine: libFuzzer Fuzz Target: cff-render-ftengine Job Type: libfuzzerubsanfreetype2 Platform Id: linux Crash Type: Invalid-builtin-use Crash Address: Crash State: FTOutlineGetOrientation...

Design/Logic Flaw

Use after free vulnerability exists in WebKit in Google Chrome before Blink M12 in RenderLayerwhen removing elements with reflections...

UBUNTU-CVE-2019-17221

PhantomJS through 2.1.1 has an arbitrary file read vulnerability, as demonstrated by an XMLHttpRequest for a file:// URI. The vulnerability exists in the page.open function of the webpage module, which loads a specified URL and calls a given callback. An attacker can supply a specially crafted HT...

python-werkzeug: Cross-site scripting in render_full function in debug/tbtools.py

Cross-site scripting XSS vulnerability in the renderfull function in debug/tbtools.py in the debugger in Pallets Werkzeug before 0.11.11 as used in Pallets Flask and other products allows remote attackers to inject arbitrary web script or HTML via a field that contains an exception message...

VulnCheck KEV: CVE-2019-16759

The PHP module within vBulletin contains an unspecified vulnerability that allows for remote code execution via the widgetConfigcode parameter in an ajax/render/widgetphp routestring request...

vBulletin remote command execution via the widgetConfig[code] parameter

Added: 09/27/2019 Background vBulletin is a commercial web bulletin board application written in PHP using MySQL. Problem vBulletin allows remote command execution via the widgetConfigcode parameter in an ajax/render/widgetphp routestring request. Resolution Upgrade vBulletin to version higher th...