MiracleLinux 8 : libvncserver-0.9.11-17.el8 (AXSA:2021-2098:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2098:01 advisory. libvncserver: uninitialized memory contents are vulnerable to Information Leak CVE-2018-21247 libvncserver: buffer overflow in ConnectClientToUnixSo...

[SECURITY] Fedora 43 Update: syncplay-1.7.4-6.fc43

Solution to synchronize video playback across multiple instances of mpv, VLC, MPC-HC and MPC-BE over the Internet. Syncplay synchronizes the position and play state of multiple media players so that the viewers can watch the same thing at the same time. This means that when one person...

EUVD-2020-7886

Malware in sbrugna...

CVE-2020-15914

A cross-site scripting XSS vulnerability exists in the Origin Client for Mac and PC 10.5.86 or earlier that could allow a remote attacker to execute arbitrary Javascript in a target user’s Origin client. An attacker could use this vulnerability to access sensitive data related to the target user’...

libvncserver: libvncclient/rfbproto.c does not limit TextChat size

An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size...

CVE-2020-15914

A cross-site scripting XSS vulnerability exists in the Origin Client for Mac and PC 10.5.86 or earlier that could allow a remote attacker to execute arbitrary Javascript in a target user’s Origin client. An attacker could use this vulnerability to access sensitive data related to the target user’...

CVE-2020-15914

A cross-site scripting XSS vulnerability exists in the Origin Client for Mac and PC 10.5.86 or earlier that could allow a remote attacker to execute arbitrary Javascript in a target user’s Origin client. An attacker could use this vulnerability to access sensitive data related to the target user’...

CVE-2014-5276

Multiple cross-site scripting XSS vulnerabilities in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to inject arbitrary web script or HTML via 1 an uploaded profile picture or 2 the edit parameter to profiles/index.php...

Sql injection

Multiple SQL injection vulnerabilities in includes/functions.php in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to execute arbitrary SQL commands via the 1 password, 2 email, or 3 id parameter...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to inject arbitrary web script or HTML via 1 an uploaded profile picture or 2 the edit parameter to profiles/index.php...

CVE-2014-5276

CVE-2014-5276 describes multiple XSS vulnerabilities in Pro Chat Rooms Text Chat Rooms 8.2.0. The issue allows remote authenticated users to inject arbitrary web script or HTML via (1) an uploaded profile picture or (2) the edit parameter to profiles/index.php. Affected software: Pro Chat Rooms T...

CVE-2014-5275

CVE-2014-5275 affects Pro Chat Rooms Text Chat Rooms 8.2.0; SQL injection vulnerabilities exist in includes/functions.php, exploitable via (1) password, (2) email, or (3) id parameters. The underlying cause is improper input handling that allows unauthenticated/injected SQL execution; however, th...

Bluetooth Text Chat v1.0 iOS - Code Execution Vulnerability

Document Title: =============== Bluetooth Text Chat v1.0 iOS - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1250 Release Date: ============= 2014-04-06 Vulnerability Laboratory ID VL-ID: ===================================...