13 matches found
EUVD-2026-33565
A weakness has been identified in Assimp up to 6.0.4. Affected by this vulnerability is the function aiNode::aiNode of the file scene.cpp of the component ASE File Parser. Executing a manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been made...
CVE-2026-10229
A vulnerability was determined in Assimp up to 6.0.4. This affects the function HL1MDLLoader::readmeshes of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been...
CVE-2023-53075
CVE-2023-53075 : In the Linux kernel, a ftrace lookup_rec() path can read records[-1].ip when index is 0, causing a KASAN use-after-free read via task modprobe. The root cause is an invalid access to pg->records[pg->index - 1].ip when pg->index is 0. The fix prevents IP checks when pg-&g...
CVE-2021-47250
In the Linux kernel, the following vulnerability has been resolved: net: ipv4: fix memory leak in netlblcipsov4addstd Reported by syzkaller: BUG: memory leak unreferenced object 0xffff888105df7000 size 64: comm "syz-executor842", pid 360, jiffies 4294824824 age 22.546s hex dump first 32 bytes: 00...
Stable Channel Update for ChromeOS / ChromeOS Flex
The Stable channel is being updated to OS version: 15699.58.0 Browser version: 121.0.6167.159 for most ChromeOS devices. If you find new issues, please let us know one of the following ways 1. File a bug 2. Visit our ChromeOS communities 1. General: Chromebook Help Community 2. Beta Specific:...
GitHub Security Lab: [Java] CWE-1004: Query to check sensitive cookies without the HttpOnly flag set
This bug was reported directly to GitHub Security Lab...
edu.kuopio.fi XSS vulnerability
Vulnerable URL: http://www.edu.kuopio.fi/forum/message.asp?message=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...
mixedcms 1.0b (lfi/su/ab/fd) Multiple Vulnerabilities
No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ---------------------...
Joomla Boy Scout Advancement 0.3 SQL Injection
------------------------------------------------------------------------------------------------------------ MULTIPLE SQL INJECTION VULNERABILITIES --Joomla Component 'Boy Scout Advancement' ----------------------------------------------------------------------------------------------------------...
MULTPLE REMOTE VULNERABILITIES --ProjectCMS v-1.1 Beta-->
------------------------------------------------------------ MULTPLE REMOTE VULNERABILITIES --ProjectCMS v-1.1 Beta-- ------------------------------------------------------------ CMS INFORMATION: --WEB: http://projectcms.org/ --DOWNLOAD: http://projectcms.org/uploads/projectcms1.1BETA.zip --DEMO:...
MiniTwitter 0.2b Remote User Options Changer Exploit
No description provided by source. !-- || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ---------...
ProjectCMS 1.0b (index.php sn) Remote SQL Injection Vulnerability
No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ------------------...
WysGui CMS 1.2 BETA(Insecure Cookie Handling)--Blind-sql-injection-exploit-->
!/usr/bin/perl --------------------------------------------------------- WysGui CMS 1.2 BETAcookie BSQL --------------------------------------------------------- CMS INFORMATION: --WEB: http://wysgui.com/ --DOWNLOAD: http://sourceforge.net/projects/wysgui/ --DEMO: http://wysgui.com/demo/...