CVE-2020-4059

In mversion before 2.0.0, there is a command injection vulnerability. This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. This vulnerability is patched by version 2.0.0. Previous releases are deprecated in npm. As a workaround,...

CVE-2020-4059

CVE-2020-4059 affects the mversion library (pre-2.0.0). The vulnerability is a command injection in the library’s internal workflow, which could lead to remote code execution when a client calls the vulnerable method with untrusted input. The issue is fixed in version 2.0.0; older releases are de...

CVE-2020-4059 Command Injection in mversion

In mversion before 2.0.0, there is a command injection vulnerability. This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. This vulnerability is patched by version 2.0.0. Previous releases are deprecated in npm. As a workaround,...

Avast Secure Browser 76.0.1659.101 Local Privilege Escalation Vulnerability

A local privilege escalation issue was discovered in Avast Secure Browser version 76.0.1659.101. The vulnerability is due to an insecure ACL set by the AvastBrowserUpdate.exe which is running as NT AUTHORITY\SYSTEM when AvastSecureBrowser.exe checks for new updates. Avast Secure Browser...

CVE-2018-16613

An issue was discovered in the update function in the wpForo Forum plugin before 1.5.2 for WordPress. A registered forum is able to escalate privilege to the forum administrator without any form of user interaction...

CVE-2018-16613

An issue was discovered in the update function in the wpForo Forum plugin before 1.5.2 for WordPress. A registered forum is able to escalate privilege to the forum administrator without any form of user interaction...

Linux Kernel 'marvell/mwifiex/scan.c' File Buffer Overflow Vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A buffer overflow vulnerability exists in the 'mwifiexupdatebssdescwithie' function in the marvell/mwifiex/scan.c file in the Linux Kernel. The vulnerability stems fro...

CVE-2019-12106

The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote attacker to crash the process due to a Use After Free vulnerability...

GxlcmsQY update function arbitrary PHP code execution vulnerability

GxlcmsQY system is a quick website cms tailored for business users. An arbitrary PHP code execution vulnerability exists in the update function in LibLibActionAdminTplAction.class.php in Gxlcms QY v1.0.0713. A remote attacker can exploit this vulnerability by placing code in a template to execute...

CVE-2018-9847

In Gxlcms QY v1.0.0713, the update function in Lib\Lib\Action\Admin\TplAction.class.php allows remote attackers to execute arbitrary PHP code by placing this code into a template...

CVE-2018-9847

In Gxlcms QY v1.0.0713, the update function in Lib\Lib\Action\Admin\TplAction.class.php allows remote attackers to execute arbitrary PHP code by placing this code into a template...

CVE-2018-9847

GxlcmsQY v1.0.0713 contains an arbitrary PHP code execution vulnerability in the update function (Lib\Lib\Action\Admin\TplAction.class.php). An attacker can place code into a template to achieve remote code execution with network access. Public references in CNVD and NVD corroborate the issue; CV...

OpenSSL 'MDC2_Update' Function Integer Overflow Vulnerability

OpenSSL is an open source capable of implementing the Secure Sockets Layer SSL v2/v3 and Secure Transport Layer TLS v1 protocols developed by the OpenSSL team as a general-purpose cryptographic library that supports a wide range of cryptographic algorithms including symmetric ciphers, hash...

Design/Logic Flaw

Use-after-free vulnerability in the OpenPDFInReaderView::Update function in browser/ui/views/locationbar/openpdfinreaderview.cc in Google Chrome before 41.0.2272.76 might allow user-assisted remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other...

CVE-2015-1245

The connected documents confirm CVE-2015-1245 in Google Chrome is a use-after-free in pdfium from OpenPDFInReaderView::Update, caused by a pdfium button with an invalid tab association. This can lead to a denial of service via heap memory corruption, with the potential for unspecified impact. The...

chromium-browser: Use-after-free in PDFium

Use-after-free vulnerability in the OpenPDFInReaderView::Update function in browser/ui/views/locationbar/openpdfinreaderview.cc in Google Chrome before 41.0.2272.76 might allow user-assisted remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other...

CVE-2013-4793

The update function in umbraco.webservices/templates/templateService.cs in the TemplateService component in Umbraco CMS before 6.0.4 does not require authentication, which allows remote attackers to execute arbitrary ASP.NET code via a crafted SOAP request...

SA-CONTRIB-2014-087 - Drupal Commerce - Information disclosure

Drupal Commerce is used to build eCommerce websites and applications of all sizes. The commerceorder module can be used to create new user accounts where email addresses are used as user names. Since user names are not considered private information in Drupal this is an information disclosure of...

ThinkSAAS 最新版SQL注入之二

简要描述： ThinkSAAS 最新版2.1，官方2月15日更新，SQL注入第二弹 详细说明： 上传资料处/app/attach/action/upload.php： case "do": $userid = intval$GET'userid'; $albumid = intval$GET'albumid'; if$userid=='0' || $albumid == 0 echo '00000'; exit; $attachid = $new'attach'-create'attach',array 'userid' = $userid,...

ThinkSAAS 最新版SQL注入之一

简要描述： ThinkSAAS 最新版2.1，官方2月15日更新，SQL注入第一弹 详细说明： 文件/app/photo/action/album.php //批量修改执行 case "infodo": //用户是否登录 $userid = aac'user'-isLogin; $albumid = intval$POST'albumid'; $albumface = tsClean$POST'albumface';//进行了过滤，但未过滤完全 $arrPhotoId = intval$POST'photoid'; $arrPhotoDesc = $POST'photodesc';...