5 matches found
PT-2024-36247 · Gutensee · Gutensee
Name of the Vulnerable Software and Affected Versions: Gutensee versions prior to 1.0.1 Description: The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based XSS. This means that an attacker could potentially inject malicious scripts into the...
PT-2023-4653 · Unknown · Mxsecurity
Name of the Vulnerable Software and Affected Versions: MXsecurity versions prior to 1.0.1 Description: The issue is related to insufficient entropy in the web service authenticator, which can be exploited by a remote attacker to bypass authentication and potentially access the system. This is due...
PT-2023-25812
Name of the Vulnerable Software and Affected Versions Oduyo Online Collection Software versions prior to 1.0.1 Description The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...
PT-2018-3683 · Google +9 · Libwebp +9
Name of the Vulnerable Software and Affected Versions: libwebp versions prior to 1.0.1 Description: A heap-based buffer overflow was found in libwebp, related to a buffer overflow issue when reading beyond the buffer boundaries in memory. This issue can be exploited by a remote attacker to gain...
GHSA-QW93-45R3-P66P Prototype Pollution in merge-options
All versions of merge-options are vulnerable to Prototype Pollution Recommendation Update to version 1.0.1 or greater...