PT-2024-32562 · Chartify · Chartify

Name of the Vulnerable Software and Affected Versions: Chartify versions n/a through 2.7.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, which leads to Reflected XSS. This problem allows for Cross-site Scripting, where an attacker can inject...

PT-2024-14070 · Unknown · Ros2 Foxy Fitzroy

Name of the Vulnerable Software and Affected Versions: ROS2 Foxy Fitzroy versions 2 Description: Insecure deserialization in ROS2 allows attackers to execute arbitrary code via a crafted input. The issue affects ROS2 Foxy Fitzroy with ROS VERSION=2 and ROS PYTHON VERSION=3. Recommendations: For...

PT-2023-25137 · Apache · Apache Inlong

Name of the Vulnerable Software and Affected Versions: Apache InLong versions 1.4.0 through 1.7.0 Description: The issue is related to an SQL injection vulnerability due to improper neutralization of special elements used in an SQL command. This occurs in the toAuditCkSql method where the groupId...

PT-2023-15121 · Unknown · Revenue Collection System

Name of the Vulnerable Software and Affected Versions: Revenue Collection System version 1.0 Description: The issue is related to a SQL injection vulnerability. It affects the step1.php endpoint. Recommendations: For Revenue Collection System version 1.0, consider disabling access to the step1.ph...