CVE-2026-30461

Daylight Studio FuelCMS v1.5.2 was discovered to contain an authenticated remote code execution RCE vulnerability via the /controllers/Installer.php and the function addgitsubmodule...

CVE-2026-30460

CVE-2026-30460 affects Daylight Studio FuelCMS v1.5.2, with an authenticated remote code execution (RCE) vulnerability in the Blocks module. The description across Red Hat, ENISA EUVD, NVD, CVE Lists, and other connected feeds consistently identifies an authenticated RCE in the Blocks component. ...

EUVD-2021-29200

Malicious code in bioql PyPI...

CVE-2024-5526

Grafana OnCall is an easy-to-use on-call management tool that will help reduce toil in on-call management through simpler workflows and interfaces that are tailored specifically for engineers. Grafana OnCall, from version 1.1.37 before 1.5.2 are vulnerable to a Server Side Request Forgery SSRF...

CVE-2024-23079

JGraphT Core v1.5.2 was discovered to contain a NullPointerException via the component org.jgrapht.alg.util.ToleranceDoubleComparator::compareDouble, Double. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerabilit...

CVE-2024-23078

JGraphT Core v1.5.2 was discovered to contain a NullPointerException via the component org.jgrapht.alg.util.ToleranceDoubleComparator::compareDouble, Double. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerabilit...

CVE-2024-23078

JGraphT Core v1.5.2 was discovered to contain a NullPointerException via the component org.jgrapht.alg.util.ToleranceDoubleComparator::compareDouble, Double. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerabilit...

CVE-2024-23079

Removed by vendor...

CVE-2024-23078

Removed by vendor...

CVE-2024-23078

Summary: CVE-2024-23078 affects JGraphT Core 1.5.2 due to a potential NullPointerException in the function ToleranceDoubleComparator::compare(Double, Double) , which (per IBM’s bulletin) could allow a remote attacker to cause a denial of service. The IBM Security Bulletin lists this CVE among mul...

CVE-2024-23078

JGraphT Core v1.5.2 was discovered to contain a NullPointerException via the component org.jgrapht.alg.util.ToleranceDoubleComparator::compareDouble, Double. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerabilit...

CVE-2024-23079

JGraphT Core v1.5.2 was discovered to contain a NullPointerException via the component org.jgrapht.alg.util.ToleranceDoubleComparator::compareDouble, Double. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerabilit...

CVE-2024-23078

JGraphT Core v1.5.2 was discovered to contain a NullPointerException via the component org.jgrapht.alg.util.ToleranceDoubleComparator::compareDouble, Double. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerabilit...

CVE-2024-23079

CVE-2024-23079 is linked in IBM’s bulletin as a DoS vulnerability caused by a NullPointerException in the JGraphT Core component org.jgrapht.alg.util.ToleranceDoubleComparator::compare(Double, Double). IBM lists affected IBM Event Processing versions 1.1.2–1.1.7 and recommends upgrading to 1.1.8 ...

CoreWCF NetFraming based services can leave connections open when they should be closed

Impact If you have a NetFraming based CoreWCF service, extra system resources could be consumed by connections being left established instead of closing or aborting them. There are two scenarios when this can happen. When a client established a connection to the service and sends no data, the...

CVE-2024-28252 CoreWCF NetFraming based services can leave connections open when they should be closed

CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. If you have a NetFraming based CoreWCF service, extra system resources could be consumed by connections being left established instead of closing or aborting them. There are two scenarios when this can...

CVE-2023-33557

Fuel CMS v1.5.2 was discovered to contain a SQL injection vulnerability via the id parameter at /controllers/Blocks.php...

Webkil QloApps 跨站脚本漏洞

Webkil QloApps is free open source hotel booking and online reservation system. A security vulnerability exists in Webkil QloApps version v.1.5.2. An attacker exploits the vulnerability to obtain sensitive information via the back and emailcreate parameters in the AuthController.php file...

CVE-2023-27781

jpegoptim v1.5.2 was discovered to contain a heap overflow in the optimize function at jpegoptim.c...

CVE-2023-1212

Cross-site Scripting XSS - Stored in GitHub repository phpipam/phpipam prior to v1.5.2...