19 matches found
HCL Aftermarket DPC 安全漏洞
HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC suffers from a security vulnerability that can be exploited by an attacker to obtain system software and version details to carry out software-specific attacks...
CVE-2025-54423
creationtimestamp| type| source ---|---|--- 2025-07-27 23:45:17+00:00| published-proof-of-concept| https://github.com/9001/copyparty/security/advisories/GHSA-9q4r-x2hj-jmvr 2025-07-28 20:20:41+00:00| seen| https://bsky.app/profile/potato.software/post/3lv2g5c53m62z 2025-07-28 23:33:12+00:00| seen...
CVE-2025-31134
FreshRSS is a self-hosted RSS feed aggregator. Prior to version 1.26.2, an attacker can gain additional information about the server by checking if certain directories exist. An attacker can, for example, check if older PHP versions are installed or if certain software is installed on the server...
CVE-2025-21585
...
GHSA-26X7-RJ23-279V vulnerabilities
Vulnerabilities for packages: mysql...
BELL-CVE-2024-35884
Bulletin has no description...
PT-2024-19816 · Apache · Apache
Name of the Vulnerable Software and Affected Versions: MyBB versions prior to 1.8.38 Description: The backup management module of the Admin CP in MyBB may accept .htaccess as the name of the backup file to be deleted, potentially exposing stored backup files over HTTP on Apache servers...
CVE-2021-44425
An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.3. An unnecessarily open listening port on a machine in the LAN of an attacker, opened by the Anydesk Windows client when using the tunneling feature, allows the attacker unauthorized access to the local machine's AnyDesk...
PT-2020-1993 · Cisco · Cisco Fxos
Name of the Vulnerable Software and Affected Versions: Cisco FXOS Software affected versions not specified Description: The issue is related to insufficient input validation in the CLI of Cisco FXOS Software, allowing an authenticated, local attacker to read or write arbitrary files on the...
CVE-2019-3892
...
OpenSSL Man-in-the-middle vulnerability
The Palo Alto Networks product security engineering team has completed analysis of our products' exposure to the vulnerabilities described in the OpenSSL Security Advisory dated June 5th, 2014. Of the 7 CVEs highlighted in the advisory, only CVE-2014-0224 is relevant to our software. The...
USN-1-1: PNG library vulnerabilities
Several integer overflow vulnerabilities were discovered in the PNG library. These vulnerabilities could be exploited by an attacker by providing a specially crafted PNG image which, when processed by the PNG library, could result in the execution of program code provided by the attacker. The PNG...
ATA-186 Password Disclosure Vulnerability
...
Windows 2003 win2k.sys vulnerability
BRIEF SYNOPSIS SUMMARY Under Windows NT5.2, all software that uses "EngTextOut" are exposed to BSOD when attempting to print non-ASCII characters. POINT OF INTEREST "win32k.sys" at 0xbf8bc8d7 Tue Mar 25 00:40:49 2003. IMPLICATIONS Envisage it. SYSTEMS AFFECTED Windows 2003 web...
CVE-2025-48786
...
CVE-2018-4714
...
CVE-2020-24644
...
CVE-2018-4761
...
CVE-2024-5609
...