13 matches found
CVE-2026-6592
A vulnerability has been found in ComfyUI up to 0.13.0. Affected by this vulnerability is the function getuserdata of the file app/usermanager.py of the component userdata Endpoint. Such manipulation leads to cross site scripting. The attack can be executed remotely. The exploit has been disclose...
CVE-2026-3682 welovemedia FFmate ffmpeg.go Execute argument injection
A security vulnerability has been detected in welovemedia FFmate up to 2.0.15. This vulnerability affects the function Execute of the file /internal/service/ffmpeg/ffmpeg.go. The manipulation leads to argument injection. The attack may be initiated remotely. The exploit has been disclosed publicl...
GHSA-429M-9874-RX9W PSI Probe vulnerable to Server-Side Request Forgery
A vulnerability has been found in psi-probe PSI Probe up to 5.3.0. This affects the function lookup of the file psi-probe-core/src/main/java/psiprobe/tools/Whois.java of the component Whois. The manipulation leads to server-side request forgery. The attack may be initiated remotely. The exploit h...
CVE-2025-10390 CRMEB UserAddressServices.php editAddress improper authorization
A weakness has been identified in CRMEB up to 5.6.1. The affected element is the function editAddress of the file app/services/user/UserAddressServices.php. Executing manipulation of the argument ID can lead to improper authorization. The attack may be launched remotely. The exploit has been made...
CVE-2024-6108
A vulnerability was found in Genexis Tilgin Home Gateway 322AS0500-03051305. It has been classified as problematic. Affected is an unknown function of the file /vood/cgi-bin/voodview.cgi?act=index⟨=EN of the component Login. The manipulation of the argument errmsg leads to basic cross site...
Web Group Communication Center (WGCC) <= 1.0.3 - SQL Injection Vuln
No description provided by source. Title : Web Group Communication Center XSS/SQL Multiple Remote Vulnerabilies Author : myvx Date : 13.05.2008 Application : Web Group Communication Center Version : = 1.0.3 PreRelease 1 Vendor : http://wgcc.de/ Download :...
File Store PRO 3.2 - Multiple Blind SQL Injection Vulnerabilities
No description provided by source. | File Store PRO 3.2 Blind SQL Injection | || Download from: http://upoint.info/cgi/demo/fs/filestore.zip - Need admin rights: /confirm.php: code ifisset$GETfolder && $GETfolder!= $folder=$GETfolder; else exitBad Request; ifisset$GETid && $GETid!= $id=$GETid; el...
File Store PRO 3.2 Multiple Blind SQL Injection Vulnerabilities
No description provided by source. | File Store PRO 3.2 Blind SQL Injection | || Download from: http://upoint.info/cgi/demo/fs/filestore.zip - Need admin rights: /confirm.php: code ifisset$GET"folder" && $GET"folder"!="" $folder=$GET"folder"; else exit"Bad Request"; ifisset$GET"id" && $GET"id"!="...
amsn_dos.txt
/ bug: amsn remote DoS vulnerability affected version: = 0.96 site: http://amsn-project.net/ tested: amsn-0.96 on freebsd 6.2 author: levent kayan date: Tue Mar 27 16:04:51 CEST 2007 www.corehack.org / / Introduction / amsn is a free open source MSN Messenger clone. / Technical details / During...
Vulnerabilities in SPIP
k k kkkk k kkkk k k kkkkkk kkkkkk kkkk k k k k k k k k k k k k k k kk k k k k kk k k k k kk kkkkk k kkkkk kk kk kkkkkk k k k k k k kk k k k k k k k kk k k k k k k k k k k k k kkkk k kkkk k k kk k k kkkk k kk k k k ------------------------------------------------------------------------------ =-...
SmartPPCProXSS.txt
------------------------------------------------------ Nightmare TeAmZ Advisory 017 ------------------------------------------------------ Date - 11/2005 SmartPPC Pro Xss AFFECTED PRODUCTS ================= SmartPPC Pro http://www.orbitscripts.com Overview: ======== SmartPPC Standard is a...
qvt-term.4.2.dos.txt
Remote DoS Attack in QVT/Term 'Plus' 4.2d FTP Server Vulnerability PROBLEM UssrLabs found a Local/Remote DoS Attack in QVT/Term 'Plus' 4.2d FTP Server, the buffer overflow is caused by a long user name / password, 2000 characters, and the re-connection to the Ftp Server. There is not much to expa...
xtramail.dos.txt
Multiple Remotes DoS Attacks in Artisoft XtraMail v1.11 Vulnerability PROBLEM: UssrLabs found multiple places in XtraMail v1.11 where they do not use proper bounds checking. The following all result in a Denial of Service against the service in question. Example: The pop3 110 service has an...