EUVD-2020-31028

Odin Secure FTP Expert 7.6.3 contains a local denial of service vulnerability that allows attackers to crash the application by manipulating site information fields. Attackers can generate a buffer overflow by pasting 108 bytes of repeated characters into connection fields, causing the applicatio...

Frappe CRM 跨站脚本漏洞

Frappe CRM is a full-featured customer relationship management system from Frappe Open Source. A cross-site scripting vulnerability exists in Frappe CRM versions prior to 1.56.2, which stems from insufficient cleanup of specially crafted URLs in web site fields, and could lead to cross-site...

EUVD-2004-1919

Malware in sbrugna...

CVE-2024-37879

Improper input validation in /admin/config/save in User-friendly SVN USVN before v1.0.12 and below allows administrators to execute arbitrary code via the fields "siteTitle", "siteIco" and "siteLogo"...

PT-2024-37979

Name of the Vulnerable Software and Affected Versions ThinkSAAS version 3.7.0 Description A problematic issue has been found in the processing of the file app/system/action/do.php. The manipulation of the arguments site title, site subtitle, site key, site desc, site url, site email, site icp lea...

Discourse 安全漏洞

Discourse is an open source community discussion platform. The platform includes community, email, and chat room features. versions of Discourse prior to 2.8.9, and prior to 2.9.0.beta10, contain an input validation error vulnerability that could be exploited by an attacker to add large text load...