Jumbo Website Manager - Remote Code Execution

Exploit Title: Jumbo Website Manager - Remote Code Execution Application: Jumbo Website Manager Version: v1.3.7 Bugs: RCE Technology: PHP Vendor URL: https://sourceforge.net/projects/jumbo/ Software Link: https://sourceforge.net/projects/jumbo/ Date of found: 28.10.2025 Author: Mirabbas Ağalarov...

Sourceforge SimplePress CMS SQL注入漏洞

SourceForge SimplePress CMS is an open-source content management system developed by SourceForge. Version 1.0.7 of SourceForge SimplePress CMS has a SQL injection vulnerability. This vulnerability stems from the presence of SQL injections in the p and s parameters, which could allow unauthenticat...

Ctags 安全漏洞

CTags is a utility developed by SourceForge OpenSource, designed to generate index files from the program source code tree, thereby facilitating quick location of text in text editors. Ctags versions 6.2.1 and earlier contained security vulnerabilities, which stemmed from improper recursive contr...

PT-2026-7973

CVE-2026-25251 - "SourceForge Information Disclosure Vulnerability" CVE ID : CVE-2026-25251 Published : Feb. 10, 2026, 11:16 p.m. | 4 hours, 3 minutes ago Description : Rejected reason: This has been moved to the REJECTED state because the information source is under review. If circumstances...

SourceForge MinaliC Webserver 资源管理错误漏洞

SourceForge MinaliC Webserver is a SourceForge open source web service program. A resource management error vulnerability exists in SourceForge MinaliC Webserver version 2.0.0, which stems from improper handling of oversized GET requests and could lead to a denial of service attack...

SourceForge QaTraq 安全漏洞

SourceForge QaTraq is an open source test management tool from SourceForge. A security vulnerability exists in SourceForge QaTraq version 6.9.2, which stems from an insufficient file type restriction that could lead to the upload and execution of arbitrary PHP files...

SourceForge QaTraq 安全漏洞

SourceForge QaTraq is an open source test management tool from SourceForge. A security vulnerability exists in SourceForge QaTraq version 6.9.2 that stems from enabling administrative account credentials by default, which could result in gaining administrative privileges...

Sourceforge Easywork Enterprise 安全漏洞

Sourceforge Easywork Enterprise is a Sourceforge open source enterprise management system. A security vulnerability exists in Sourceforge Easywork Enterprise version 2.1.3.354, which originates from storing sensitive information in memory in clear text and could lead to unauthorized activation of...

Amazon Linux 2023 : giflib, giflib-devel, giflib-utils (ALAS2023-2025-1220)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1220 advisory. Buffer Overflow vulnerability in GifLib Project GifLib v.5.2.1 allows a local attacker to obtain sensitive information via the DumpSCreen2RGB function in gif2rgb.c CVE-2023-48161 Giflib Projec...

EUVD-2006-5547

Malware in sbrugna...

SourceForge Dogfood CRM 安全漏洞

SourceForge Dogfood CRM is a SourceForge open source information management system. A security vulnerability exists in SourceForge Dogfood CRM version 2.0.10, which stems from insufficient cleanup of the data parameter in the spell.php script, which could lead to remote command execution...

SourceForge Subtitle Processor 安全漏洞

SourceForge Subtitle Processor is an open source movie subtitle processing software from SourceForge. A security vulnerability exists in SourceForge Subtitle Processor version 7.7.1, which originates from a buffer overflow when parsing .m3u files and could lead to the execution of arbitrary code...

Sourceforge PHP Volunteer Management 安全漏洞

Sourceforge PHP Volunteer Management is a Sourceforge open source PHP-based volunteer management system. A security vulnerability exists in Sourceforge PHP Volunteer Management version 1.0.2, which stems from the document upload feature not restricting file types, which could lead to arbitrary fi...

Sourceforge WeBid 安全漏洞

Sourceforge WeBid is a Sourceforge open source web project for online auctions and selling products. A security vulnerability exists in Sourceforge WeBid version 1.0.2, which stems from a converter.php script that does not clean up the to parameter in a POST request, which could lead to remote co...

Sourceforge Phptax 安全漏洞

Sourceforge Phptax is an open source tax calculator from Sourceforge. A security vulnerability exists in Sourceforge Phptax version 0.8, which stems from the pfilez parameter being passed unvalidated directly to the exec function, which could lead to remote code execution...

Sourceforge sflog! 安全漏洞

Sourceforge sflog! is an open source content management system from Sourceforge. A security vulnerability exists in version 1.0 of Sourceforge sflog!, which stems from the blog management interface not validating file types, and could lead to arbitrary file uploads and remote code execution...

Sourceforge XODA 安全漏洞

Sourceforge XODA is a file management software from Sourceforge open source. A security vulnerability exists in Sourceforge XODA version 0.4.5, which stems from the upload feature not validating file types, and could lead to arbitrary file uploads and remote code execution...

Sourceforge WANem 安全漏洞

Sourceforge WANem is an open source network testing tool from Sourceforge. A security vulnerability exists in Sourceforge WANem v2.3, which stems from the result.php script not cleaning up input and the presence of command injection in the SUID-root binary dosu, which could lead to remote code...

Sourceforge Xfig 代码问题漏洞

Sourceforge Xfig is an open source charting tool from Sourceforge. A code issue vulnerability exists in Sourceforge Xfig that stems from a stack overflow that occurs when running fig2dev, resulting in memory corruption...

Sourceforge Xfig 代码问题漏洞

Sourceforge Xfig is an open source charting tool from Sourceforge. A code issue vulnerability exists in Sourceforge Xfig that stems from a segmentation error in fig2dev that results in memory corruption...