@openinc/parse-server-opendash (>=3.0.0 <=3.30.0), @servable/parse-server-engine (>=1.6.0 <=1.17.0) +5 more potentially affected by CVE-2026-30850 via parse-server (=8.6.76)

parse-server NPM version =8.6.76 is affected by a known vulnerability. The following packages have a transitive dependency on parse-server and may be impacted: - @openinc/parse-server-opendash =3.0.0, =1.6.0, =1.0.0, =1.0.3, =2.0.0, =2.0.0, =0.0.1, =0.1.0 Source cves: CVE-2026-30850 Source...

4m-node-server (>=0.0.1 <=0.0.8), @2109-t5/server (>=1.0.0 <=1.0.9) +953 more potentially affected by CVE-2026-23897 via apollo-server (>=2.0.0 <=3.13.0)

apollo-server NPM version =2.0.0, =0.0.1, =1.0.0, =0.5.0, =0.1.0, =0.4.52, =0.0.1, =1.0.7, =0.4.0-alpha.0, =10.4.0, =9.0.0, =10.0.0, =11.2.0 and more Source cves: CVE-2026-23897 Source advisory: OSV:GHSA-MP6Q-XF9X-FWF7...

@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @peterpme/parse-server-mailgun (>=2.4.8 <=2.5.11) +19 more potentially affected by CVE-2023-32689 via parse-server (>=2.0.8 <=3.10.0)

parse-server NPM version =2.0.8, =1.0.5, =2.4.8, =1.0.0, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.0, =1.0.0, =1.0.0, =1.4.0 and more Source cves: CVE-2023-32689 Source advisory: OSV:GHSA-9PRM-JQWX-45X9...

XML External Entity (XXE)

batik-svgbrowser is vulnerable to XML external entity attacks. An attacker is able to submit HTTP GET requests on behalf of the server using malicious arguments...

CVE-2019-3995

ELOG 3.1.4-57bea22 and below is affected by a denial of service vulnerability due to a NULL pointer dereference. A remote unauthenticated attacker can crash the ELOG server by sending a crafted HTTP GET request...

Smart Guard Network Manager 6.3.2 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: SQL Injection In Smart Guard Network Manager Api Date: 03/12/2016 Exploit Author: Rahul Raz Vendor Homepage: http://www.xsinfoways.com/ Software Name: Smart Guard Network Manager Version: 6.3.2 Tested on: Ubuntu Linux...

Smart Guard Network Manager 6.3.2 - SQL Injection

Smart Guard Network Manager 6.3.2 - SQL Injection Exploit Title: SQL Injection In Smart Guard Network Manager Api Date: 03/12/2016 Exploit Author: Rahul Raz Vendor Homepage: http://www.xsinfoways.com/ Software Name: Smart Guard Network Manager Version: 6.3.2 Tested on: Ubuntu Linux Vulnerability...

keyfocus kf web server 1.0.8 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6180/info KeyFocus KF Web Server is vulnerable to a directory traversal attack. This is due to the web server's inability to properly handle file names containing consecutive dot characters. By exploiting this...

Symantec Web Gateway <= 5.0.3.18 Arbitrary Password Change (MSF)

No description provided by source. @Kc57 Symantec Web Gateway = 5.0.3.18 Arbitrary Password Change require 'msf/core' class Metasploit3 Msf::Auxiliary include Msf::Exploit::Remote::HttpClient def initializeinfo= superupdateinfoinfo, 'Name' = Symantec Web Gateway = 5.0.3.18 Arbitrary Password...

aradBlog Multiple Remote Vulnerabilities

Exploit for asp platform in category web applications ======================================== aradBlog Multiple Remote Vulnerabilities ======================================== Title : aradBlog Multiple Remote Vulnerabilities Affected Version : http://Example.com/downloads/uploa...

CVE-2002-0224

The MSDTC Microsoft Distributed Transaction Service Coordinator for Microsoft Windows 2000, Microsoft IIS 5.0 and SQL Server 6.5 through SQL 2000 0.0 allows remote attackers to cause a denial of service crash or hang via malformed random input...