2611 matches found
Voovi SQL Injection Vulnerability
Voovi is an open source social networking script from Sourceforge. Voovi 1.0 version has a SQL injection vulnerability , the vulnerability stems from signin.php has a SQL injection vulnerability...
Voovi SQL Injection Vulnerability
Voovi is an open source social networking script from Sourceforge. Voovi 1.0 version has a SQL injection vulnerability , the vulnerability stems from signup2.php SQL injection vulnerability...
WordPress Widgets for SourceForge Reviews Plugin <= 11.0.2 is vulnerable to Arbitrary File Upload
Software Widgets for SourceForge Reviews Type Plugin Vulnerable versions = 11.0.2 Fixed in 11.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2023-48275 Patch priority Medium CVSS severity Medium 8 Developer Claim ownership PSID 54da1ae2f502 Credits Rafie Muhammad...
eSST Monitoring Code Injection Vulnerability
Sourceforge eSST Monitoring is an open source monitoring system from Sourceforge. A security vulnerability exists in eSST Monitoring version v2.147.1, which stems from a Remote Code Execution RCE vulnerability in the Gii code generator component...
eSST Monitoring Code Issue Vulnerability
Sourceforge eSST Monitoring is an open source monitoring system from Sourceforge. A security vulnerability exists in eSST Monitoring version v2.147.1, which stems from a remote code execution RCE vulnerability in the file upload feature...
islamnt CMS 2.1.0 Cross Site Scripting
==================================================================================================================================== | Title : islamnt CMS v2.1.0 XSS Vulnerability Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 66.0.332-b...
Hasan MWB 1 Add Administrator
==================================================================================================================================== | Title : Hasan MWB v1 Reinstall Add Admin Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 65.032-bit | |...
CVE-2021-46312
An issue was discovered IW44EncodeCodec.cpp in djvulibre 3.5.28 in allows attackers to cause a denial of service via divide by zero...
Denial of Service (DoS)
Overview Affected versions of this package are vulnerable to Denial of Service DoS when the IW44EncodeCodec.cpp function is utilized, by instigating a division by zero scenario. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its intended...
Sourceforge Ogg Video Tools 缓冲区错误漏洞
Sourceforge Ogg Video Tools is a Sourceforge open source toolkit for manipulating and creating Ogg video files. A security vulnerability exists in Sourceforge Ogg Video Tools version 0.9.1, which stems from the presence of a buffer overflow vulnerability that allows remote attackers to execute...
Sourceforge Ogg Video Tools 资源管理错误漏洞
Sourceforge Ogg Video Tools is a Sourceforge open source toolkit for manipulating and creating Ogg video files. A security vulnerability exists in Sourceforge Ogg Video Tools version 0.9.1, which stems from the presence of a buffer overflow vulnerability. An attacker can exploit the vulnerability...
ProjeQtOr Project Management System 10.4.1 Cross Site Scripting
Exploit Title: ProjeQtOr Project Management System V10.4.1 - Multiple XSS Version: V10.4.1 Bugs: Multiple XSS Technology: PHP Vendor URL: https://www.projeqtor.org Software Link: https://sourceforge.net/projects/projectorria/files/projeqtorV10.4.1.zip/download Date of found: 09.07.2023 Author:...
ProjeQtOr Project Management System v10.4.1 - Multiple XSS Vulnerabilities
Exploit Title: ProjeQtOr Project Management System V10.4.1 - Multiple XSS Version: V10.4.1 Bugs: Multiple XSS Technology: PHP Vendor URL: https://www.projeqtor.org Software Link: https://sourceforge.net/projects/projectorria/files/projeqtorV10.4.1.zip/download Date of found: 09.07.2023 Author:...
ai.preferred:venom (>=4.0.1 <=4.2.7), at.ganzleicht.vaadin:vaadin-client-compiler (>=9.1.1 <=9.1.3) +2097 more potentially affected by CVE-2023-26119 via net.sourceforge.htmlunit:htmlunit (>=1.14 <=2.9)
net.sourceforge.htmlunit:htmlunit MAVEN version =1.14, =4.0.1, =9.1.1, =1.0.0, =1.0.0, =1.0.0, =0.0.2, =1, =2.0, =0.9.6, =0.9.6, =0.1.1, =0.5.0, =0.11.1, =0.30.0 and more Source cves: CVE-2023-26119 Source advisory: OSV:GHSA-3XRR-7M6P-P7XH...
CVE-2020-22336
An issue was discovered in pdfcrack 0.17 thru 0.18, allows attackers to execute arbitrary code via a stack overflow in the MD5 function...
CVE-2020-25969
gnuplot v5.5 was discovered to contain a buffer overflow via the function plotrequest...
Denial Of Service (DoS)
net.sourceforge.htmlcleaner:htmlcleaner is vulnerable to Denial of Service DoS attacks. The vulnerability is due to lack of nesting depth checks, which allows an attacker to cause DoS via parsing a deeply nested html string...
Sourceforge axTLS 缓冲区错误漏洞
Sourceforge axTLS is a highly configurable client/server TLS Transport Layer Security Protocol library from Sourceforge open source. A security vulnerability exists in Sourceforge axTLS version v2.1.5, which stems from the inclusion of a heap buffer overflow that allows an attacker to cause a...
ProjeQtOr Project Management System 10.3.2 - Remote Code Execution Vulnerability
Exploit Title: ProjeQtOr Project Management System 10.3.2 -Remote Code Execution RCE Application: ProjeQtOr Project Management System Version: 10.3.2 Bugs: Remote Code Execution RCE Authenticated via file upload Technology: PHP Vendor URL: https://www.projeqtor.org Software Link:...
X2CRM v6.6/6.9 - Reflected Cross-Site Scripting (Authenticated) Vulnerability
Exploit Title: X2CRM v6.6/6.9 - Reflected Cross-Site Scripting XSS Authenticated Exploit Author: Betul Denizler Vendor Homepage: https://x2crm.com/ Software Link: https://sourceforge.net/projects/x2engine/ Version: X2CRM v6.6/6.9 Tested on: Ubuntu Mate 20.04 Vulnerable Parameter: model CVE: Use...