CVE-2024-57521

SQL Injection vulnerability in RuoYi v.4.7.9 and before allows a remote attacker to execute arbitrary code via the createTable function in SqlUtil.java...

CVE-2024-57521

SQL Injection vulnerability in RuoYi v.4.7.9 and before allows a remote attacker to execute arbitrary code via the createTable function in SqlUtil.java...

CVE-2025-10901 Originality.ai AI Checker <= 1.0.16 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Disclosure via 'ai_get_table'

The Originality.ai AI Checker plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'aigettable' function in all versions up to, and including, 1.0.16. This makes it possible for authenticated attackers, with Subscriber-level access and above, ...

EUVD-2019-8375

Malware in sbrugna...

EUVD-2005-4732

Malware in sbrugna...

EUVD-2024-34716

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2020-24825

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the linetable::linetable function of Libelfin v0.3 allows attackers to cause a denial of service DOS through a segmentation fault via a craft...

CVE-2024-31870

IBM Db2 for i 7.2, 7.3, 7.4, and 7.5 supplies user defined table function is vulnerable to user enumeration by a local authenticated attacker, without having authority to the related USRPRF objects. This can be used by a malicious actor to gather information about users that can be targeted in...

CVE-2019-18657

ClickHouse before 19.13.5.44 allows HTTP header injection via the url table function...

CVE-2005-4739

IBM DB2 Universal Database UDB 820 before version 8 FixPak 10 s050811 allows remote authenticated users to cause a denial of service application crash by using a table function for an instance of snapshottbreorg, which triggers a trap in sqlnrEStoEaction...

CVE-2024-51245

In DrayTek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the renametable function...

DrayTek Vigor 3900 安全漏洞

The DrayTek Vigor 3900 is a high-performance router for enterprise networks from China-based DrayTek. A security vulnerability exists in the DrayTek Vigor 3900 version 1.5.1.3, which can be exploited by an attacker to execute arbitrary commands by injecting malicious commands into mainfunction.cg...

CVE-2024-31870

IBM Db2 for i 7.2, 7.3, 7.4, and 7.5 supplies user defined table function is vulnerable to user enumeration by a local authenticated attacker, without having authority to the related USRPRF objects. This can be used by a malicious actor to gather information about users that can be targeted in...

CVE-2024-31870 IBM i information disclosure

IBM Db2 for i 7.2, 7.3, 7.4, and 7.5 supplies user defined table function is vulnerable to user enumeration by a local authenticated attacker, without having authority to the related USRPRF objects. This can be used by a malicious actor to gather information about users that can be targeted in...

CVE-2024-34256

OFCMS V1.1.2 is vulnerable to SQL Injection via the new table function...

CVE-2024-34256

OFCMS V1.1.2 is vulnerable to SQL Injection via the new table function...

CVE-2024-34256

CVE-2024-34256 affects OFCMS V1.1.2 and is caused by SQL Injection via the new table function in OFCMS. Multiple sources (NVD, CVE listings, Red Hat, CNNVD, PT Security) consistently describe a high-severity issue with potential total impact if exploited, but exploitation details and confirmed at...

OFCMS 安全漏洞

Zhongtian Network Technology OFCMS is a content management system CMS developed in Java language by China Zhongtian Network Technology Company. A security vulnerability exists in OFCMS version V1.1.2, which originates from an easy SQL injection attack via a new table function...

Security Bulletin: IBM® Db2® is vulnerable to an information disclosure caused by improper privilege management when table function is used. (CVE-2022-22390)

Summary IBM® Db2® is vulnerable to an information disclosure caused by improper privilege management when table function is used. Vulnerability Details CVEID:CVE-2022-22390 DESCRIPTION: IBM Db2 may be vulnerable to an information disclousre caused by improper privilege management when table...

CVE-2022-22390

IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 may be vulnerable to an information disclosure caused by improper privilege management when table function is used. IBM X-Force ID: 221973...