Lucene search
K

77 matches found

nvd
nvd
added 2025/03/26 3:16 p.m.5 views

CVE-2025-28873

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Scott Taylor Shuffle shuffle allows Blind SQL Injection.This issue affects Shuffle: from n/a through = 0.5...

8.5CVSS0.00508EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/03/26 2:24 p.m.5 views

CVE-2025-28873 WordPress Shuffle plugin <= 0.5 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Scott Taylor Shuffle shuffle allows Blind SQL Injection.This issue affects Shuffle: from n/a through = 0.5...

8.5CVSS7.3AI score0.00508EPSS
Exploits0References1
cve
cve
added 2025/03/26 2:24 p.m.54 views

CVE-2025-28873

CVE-2025-28873 describes an SQL injection vulnerability in the WordPress Shuffle plugin that allows an authenticated (Subscriber) attacker to perform blind SQL injection. The issue is triggered via improper neutralization of input in SQL commands, leading to potential data exposure and high impac...

8.5CVSS7.3AI score0.00508EPSS
Exploits0References1
cvelist
cvelist
added 2025/03/26 2:24 p.m.12 views

CVE-2025-28873 WordPress Shuffle plugin <= 0.5 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Scott Taylor Shuffle shuffle allows Blind SQL Injection.This issue affects Shuffle: from n/a through = 0.5...

8.5CVSS0.00508EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/03/26 12:0 a.m.3 views

WordPress plugin Shuffle SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. WordPress Shuffle plugin suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements. An attacker can exploit this...

8.5CVSS7.8AI score0.00508EPSS
Exploits0References1
patchstack
patchstack
added 2025/03/24 1:29 p.m.4 views

WordPress Shuffle plugin <= 0.5 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Theme Shuffle versions = 0.5...

8.5CVSS8.1AI score0.00508EPSS
Exploits0Affected Software1
mscve
mscve
added 2024/06/30 2:0 p.m.5 views

TensorFlow has Null Pointer Error in RandomShuffle with XLA enable

...

7.5CVSS6.3AI score0.00391EPSS
Exploits0
ossf
ossf
added 2024/06/25 1:51 p.m.6 views

Malicious code in game-shuffle_cards (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
ibm
ibm
added 2023/11/14 7:45 p.m.30 views

Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities

Summary IBM Security Guardium has addressed these vulnerabilities in an update. Vulnerability Details CVEID: CVE-2022-46363 DESCRIPTION: Apache CXF could allow a remote attacker to obtain sensitive information, caused by a flaw when the CXFServlet is configured with both the static-resources-list...

7.5CVSS8.5AI score0.20459EPSS
Exploits6Affected Software1
ibm
ibm
added 2023/10/09 10:38 a.m.25 views

Security Bulletin: Vulnerability in snappy-java affects IBM Process Mining . CVE-2023-34453

Summary There is a vulnerability in snappy-java that could allow a remote attacker to execute a denial of service. The code is used by IBM Process Mining. This bulletin identifies the security fixes to apply to address the vulnerability. Vulnerability Details CVEID:CVE-2023-34453 DESCRIPTION:...

7.5CVSS7AI score0.01707EPSS
Exploits1Affected Software1
redhat
redhat
added 2023/09/14 9:51 a.m.8 views

snappy-java: Integer overflow in compress leads to DoS

A flaw was found in Snappy-java's shuffle function, which does not check input sizes before beginning operations. This issue could allow an attacker to send malicious input to trigger an overflow error that crashes the program, resulting in a denial of service...

7.5CVSS7.3AI score0.01469EPSS
Exploits0References4
redhat
redhat
added 2023/09/14 9:51 a.m.6 views

snappy-java: Integer overflow in shuffle leads to DoS

A flaw was found in Snappy-java's shuffle function, which does not check input sizes before beginning operations. This issue could allow an attacker to send malicious input to trigger an overflow error that crashes the program, resulting in a denial of service...

7.5CVSS7.3AI score0.01707EPSS
Exploits1References4
bdu_fstec
bdu_fstec
added 2023/09/08 12:0 a.m.5 views

The vulnerability of the shuffle function in the snappy-java fast compression/decompression library allows a hacker to induce a service failure.

The vulnerability of the shuffleint input function in the snappy-java compression/decompression library is related to integer overflow. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS6.9AI score0.01707EPSS
Exploits1References7Affected Software3
redhatcve
redhatcve
added 2023/08/08 5:21 p.m.65 views

CVE-2023-34454

A flaw was found in Snappy-java's shuffle function, which does not check input sizes before beginning operations. This issue could allow an attacker to send malicious input to trigger an overflow error that crashes the program, resulting in a denial of service...

5.9CVSS6.9AI score0.01469EPSS
Exploits0References3
nvd
nvd
added 2023/06/15 5:15 p.m.16 views

CVE-2023-34453

snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing a fatal error. The function shuffleint input in the file BitShuffle.java receives an array of integers and applies a bit shuffle on it. It...

7.5CVSS6.7AI score0.01707EPSS
Exploits1References4
osv
osv
added 2023/06/15 5:15 p.m.11 views

UBUNTU-CVE-2023-34453

snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing a fatal error. The function shuffleint input in the file BitShuffle.java receives an array of integers and applies a bit shuffle on it. It...

7.5CVSS6.9AI score0.01707EPSS
Exploits1References6
osv
osv
added 2023/06/15 4:13 p.m.4 views

GHSA-PQR6-CMR2-H8HF snappy-java's Integer Overflow vulnerability in shuffle leads to DoS

Summary Due to unchecked multiplications, an integer overflow may occur, causing a fatal error. Impact Denial of Service Description The function shuffleint inputhttps://github.com/xerial/snappy-java/blob/05c39b2ca9b5b7b39611529cc302d3d796329611/src/main/java/org/xerial/snappy/BitShuffle.javaL107...

5.9CVSS6.9AI score0.01707EPSS
Exploits1References6
github
github
added 2023/06/15 4:13 p.m.47 views

snappy-java's Integer Overflow vulnerability in shuffle leads to DoS

Summary Due to unchecked multiplications, an integer overflow may occur, causing a fatal error. Impact Denial of Service Description The function shuffleint inputhttps://github.com/xerial/snappy-java/blob/05c39b2ca9b5b7b39611529cc302d3d796329611/src/main/java/org/xerial/snappy/BitShuffle.javaL107...

7.5CVSS7.2AI score0.01707EPSS
Exploits1References6Affected Software1
cve
cve
added 2023/06/15 4:12 p.m.403 views

CVE-2023-34453

CVE-2023-34453 affects snappy-java (Java port of Snappy). The vulnerability stems from unchecked multiplications in BitShuffle.java (shuffle variants for int, double, float, long, short), where length×multiplier can overflow, producing negative or zero values. This can trigger NegativeArraySizeEx...

7.5CVSS6.7AI score0.01707EPSS
Exploits1References4Affected Software1
ptsecurity
ptsecurity
added 2023/06/15 12:0 a.m.16 views

PT-2023-4871

Name of the Vulnerable Software and Affected Versions snappy-java versions prior to 1.1.10.1 Description The issue is related to an integer overflow in the shuffleint input function in the file BitShuffle.java, which can cause a fatal error. This function applies a bit shuffle to an array of...

9.1CVSS6.9AI score0.01707EPSS
Exploits2References213
Rows per page
Query Builder