Lucene search
K

4 matches found

NVD
NVD
added 2023/12/14 7:15 a.m.24 views

CVE-2023-25650

There is an arbitrary file download vulnerability in ZXCLOUD iRAI. Since the backend does not escape special strings or restrict paths, an attacker with user permission could access the download interface by modifying the request parameter, causing arbitrary file downloads...

6.5CVSS0.00589EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/03/31 1:57 a.m.3 views

SUSE CVE-2023-28427

matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. In versions prior to 24.0.0 events sent with special strings in key places can temporarily disrupt or impede the matrix-js-sdk from functioning properly, potentially impacting the consumer's ability to process data...

8.2CVSS9AI score0.01185EPSS
Exploits0References4
CNVD
CNVD
added 2016/06/19 12:0 a.m.1 views

Takumi Yamada DX Library Remote Code Execution Vulnerability

Takumi Yamada DX Library is an open source library for creating Windows applications. A remote code execution vulnerability exists in Takumi Yamada DX Library's handling of special strings, which could be exploited by a remote attacker to submit a special request to execute arbitrary code...

9.8CVSS8.5AI score0.03816EPSS
Exploits0References1
Cvelist
Cvelist
added 2005/02/12 5:0 a.m.19 views

CVE-2004-1414

Gadu-Gadu 6.1 build 156 allows remote attackers to cause a denial of service application hang via a message that contains many special strings that are converted to images...

6.6AI score0.01331EPSS
Exploits1References2
Rows per page
Query Builder