EUVD-2022-48501

Malicious code in bioql PyPI...

EUVD-2022-46197

Malicious code in bioql PyPI...

CVE-2024-2263

Themify WordPress plugin before 1.4.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

CVE-2023-44297

Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information disclosure, information tampering, code execution, denial ...

CVE-2023-5906

The Job Manager & Career WordPress plugin before 1.4.4 contains a vulnerability in the Directory Listings system, which allows an unauthorized user to view and download private files of other users. This vulnerability poses a serious security threat because it allows an attacker to gain access to...

CVE-2022-45634

An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows authenticated attacker to gain access to sensitive account information...

CVE-2022-45635

An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker to gain access to sensitive account information via insecure password policy...

Information disclosure

An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker to gain access to sensitive account information via insecure password policy...

CVE-2022-45635

An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker to gain access to sensitive account information via insecure password policy...

CVE-2022-23519

rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. Prior to version 1.4.4, a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer may allow an attacker to inject content if the application developer has overridden the sanitizer's...

CVE-2022-43151

timg v1.4.4 was discovered to contain a memory leak via the function timg::QueryBackgroundColor at /timg/src/term-query.cc...

CVE-2022-43151

timg v1.4.4 was discovered to contain a memory leak via the function timg::QueryBackgroundColor at /timg/src/term-query.cc...

Memory corruption

timg v1.4.4 was discovered to contain a memory leak via the function timg::QueryBackgroundColor at /timg/src/term-query.cc...

CVE-2022-43151

timg v1.4.4 was discovered to contain a memory leak via the function timg::QueryBackgroundColor at /timg/src/term-query.cc...

OctoRPKI crashes when max iterations is reached

Impact Attackers can create long chains of CAs that would lead to OctoRPKI exceeding its max iterations parameter. In consequence it would cause the program to crash, preventing it from finishing the validation and leading to a denial of service. Credits to Donika Mirdita and Haya Shulman -...

CVE-2022-43151

timg v1.4.4 was discovered to contain a memory leak via the function timg::QueryBackgroundColor at /timg/src/term-query.cc...

CVE-2022-43151

timg v1.4.4 was discovered to contain a memory leak via the function timg::QueryBackgroundColor at /timg/src/term-query.cc...

CVE-2022-43151

CVE-2022-43151 affects timg v1.4.4, where a memory leak is triggered by the function timg::QueryBackgroundColor() in /timg/src/term-query.cc. The vulnerability is rooted in a faulty memory handling path within that function, leading to potential availability impact. Public references in the conne...

CVE-2022-43151

timg v1.4.4 was discovered to contain a memory leak via the function timg::QueryBackgroundColor at /timg/src/term-query.cc...

Exploit for SQL Injection in Phpipam

CVE-2022-23046 The original discovery and manual PoC is from...