29 matches found
CVE-2019-2251
If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...
EUVD-2019-11893
Malware in sbrugna...
EUVD-2017-2346
Malware in sbrugna...
EUVD-2021-28659
Malicious code in bioql PyPI...
EUVD-2021-8778
Malicious code in bioql PyPI...
CVE-2024-12467
CVE-2024-12467: Pago por Redsys WordPress plugin has a reflected XSS in Ds_MerchantParameters affecting all versions up to 1.0.12. Exploitation is unauthenticated; user action (e.g., clicking a link) triggers script execution. The issue is addressed in a subsequent release (1.0.13 per changelog),...
Atom CMS 1.0.2 Shell Upload
Exploit Title: Atom CMS 2.0 - Remote Code Execution RCE Date: 22.03.2022 Exploit Author: Ashish Koli Shikari Vendor Homepage: https://thedigitalcraft.com/ Software Link: https://github.com/thedigicraft/Atom.CMS Version: 2.0 Tested on: Ubuntu 20.04.3 LTS CVE: CVE-2022-25487 Description This script...
PuneethReddyHC Online Shopping System Advanced 1.0 SQL Injection Vulnerability
PuneethReddyHC Online Shopping System Advanced version 1.0 suffers from a remote SQL injection vulnerability. CVE-2021-41648 CVE-2021-41648 SQL Injection in online-shopping-system The online-shopping-system is vulnerable to un-authenticated error/boolean-based blind & error based SQL Injection...
PuneethReddyHC Online Shopping System Advanced 1.0 SQL Injection
CVE-2021-41648 CVE-2021-41648 SQL Injection in online-shopping-system The online-shopping-system is vulnerable to un-authenticated error/boolean-based blind & error based SQL Injection attacks. The proId parameter on the /action.php page does not sanitize the user input, an attacker can extract...
Online-Food-Ordering-Web-App SQL Injection Vulnerability
CVE-2021-41647 SQL Injection in Online-Food-Ordering-Web-App The Online-Food-Ordering-Web-App is vulnerable to un-authenticated error and time-based blind SQL Injection attacks. The username parameter on the /login.php page does not sanitize the user input, an attacker is able to bypass the login...
CVE-2021-41648
CVE-2021-41648 affects the PuneethReddyHC Online Shopping System Advanced. An unauthenticated SQL injection exists in the /action.php prId parameter, with input not sanitized for POST requests, allowing an attacker to craft SQL queries against the underlying MySQL database. Connected sources (nuc...
Exploit for SQL Injection in Hotel_Management_System_Project Hotel_Management_System
CVE-2021-41651 CVE-2021-41651 SQL Injection in hotel-mgmt-sys...
Exploit for SQL Injection in Online-Shopping-System-Advanced_Project Online-Shopping-System-Advanced
CVE-2021-41649 CVE-2021-41649 SQL Injection in online-shoppin...
Exploit for SQL Injection in Online_Food_Ordering_Web_App_Project Online_Food_Ordering_Web_App
CVE-2021-41647 CVE-2021-41647 SQL Injection in Online-Food-Or...
CVE-2021-21506
PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in its API handler. An un-authtenticated with ISIPRIVSYSSUPPORT and ISIPRIVLOGINPAPI privileges could potentially exploit this vulnerability, leading to potential privileges escalation...
Microsoft Active Directory Federation Services Cross-Site Scripting Vulnerability
A cross-site-scripting XSS vulnerability exists when Active Directory Federation Services ADFS does not properly sanitize user inputs. An un-authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected ADFS server. The attacker who successfully...
CVE-2019-2251
If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...
Stack overflow
If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...
Semrush: User Controllable Cookie
NOTE! Thanks for submitting a report! Please replace all the square sections below with the pertinent details. Remember, the more detail you provide, the easier it is for us to verify and then potentially issue a bounty, so be sure to take your time filling out the report! User Controllable Cooki...
Debut Embedded HTTPd 1.20 - Denial of Service
Exploit Title: Remote un-authenticated DoS in Debut embedded httpd server in Brother printers Date: 11/02/2017 Exploit Author: z00n @0xz00n Vendor Homepage: http://www.brother-usa.com Version: = 1.20 CVE : CVE-2017-16249 Description: The Debut embedded http server contains a remotely exploitable...