EUVD-2017-6360

Malware in sbrugna...

CVE-2025-1067

There is an untrusted search path vulnerability in Esri ArcGIS Pro 3.3 and 3.4 that may allow a low privileged attacker with write privileges to the local file system to introduce a malicious executable to the filesystem. When the victim performs a specific action using ArcGIS ArcGIS Pro, the fil...

CVE-2021-32724

check-spelling is a github action which provides CI spell checking. In affected versions and for a repository with the check-spelling action enabled that triggers on pullrequesttarget or schedule, an attacker can send a crafted Pull Request that causes a GITHUBTOKEN to be exposed. With the...

Design/Logic Flaw

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing VENDOR specific action frame in the function limprocessactionvendorspecific, a comparison is performed with the incoming action frame body without validating if the...

CVE-2017-14882

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing VENDOR specific action frame in the function limprocessactionvendorspecific, a comparison is performed with the incoming action frame body without validating if the...

CVE-2017-14882

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing VENDOR specific action frame in the function limprocessactionvendorspecific, a comparison is performed with the incoming action frame body without validating if the...

Stored Cross-Site Scripting Vulnerability in 78OA Office System

78OA office system is a full-featured OA office system launched by Shenzhen Xinxingkong Software for large and medium-sized enterprises and group enterprises. 78OA office system has a stored cross-site script vulnerability, an attacker can directly insert the cross-site script, and triggered by a...