UBUNTU-CVE-2022-25326

fscrypt through v0.3.2 creates a world-writable directory by default when setting up a filesystem, allowing unprivileged users to exhaust filesystem space. We recommend upgrading to fscrypt 0.3.3 or above and adjusting the permissions on existing fscrypt metadata directories where applicable...

PT-2022-17214 · Fscrypt +1 · Fscrypt +1

Name of the Vulnerable Software and Affected Versions: fscrypt versions through 0.3.2 Description: The issue allows unprivileged users to exhaust filesystem space due to a world-writable directory created by default when setting up a filesystem. Recommendations: For fscrypt versions through 0.3.2...

Google Fscrypt 资源管理错误漏洞

Google Fscrypt is an open source advanced tool from Google Google. It is used to manage Linux native file system encryption. A resource management error vulnerability exists in Google fscrypt versions 0.3.0 through 0.3.2, which stems from user-supplied input that is not adequately validated. A...

StudyMD 0.3.2 Cross Site Scripting / Code Execution

Exploit Title: StudyMD 0.3.2 XSS to RCE Exploit Author: TaurusOmar Twitter:@TaurusOmar HomePage:taurusomar.com Date: May 4th, 2021 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Risk: High 8.8 Vendor Homepage: https://github.com/jotron/StudyMD Version: 0.3.2 Tested on: Windows, Linux, MacOs Softwar...

WCMS Cross-Site Scripting Vulnerability (CNVD-2021-28256)

WCMS is a content management system CMS that uses an open web interface to build websites. A reflective cross-site scripting vulnerability exists in WCMS version 0.3.2. The vulnerability can be exploited to inject arbitrary web script and HTML via the type parameter of wex/cssjs.php...

WCMS 路径遍历漏洞

WCMS is a content management system CMS that uses an open web interface to build websites. A directory traversal vulnerability exists in WCMS version 0.3.2. The vulnerability can be exploited to read arbitrary files on the server running the application via the pagename parameter of wex/html.php...

WCMS 路径遍历漏洞

WCMS is a content management system CMS that uses an open web interface to build websites. A directory traversal vulnerability exists in WCMS version 0.3.2. The vulnerability can be exploited to read arbitrary files on the server running the application via the path parameter of wex/cssjs.php...

WCMS 跨站脚本漏洞

WCMS is a content management system CMS that uses an open web interface to build websites. A reflective cross-site scripting vulnerability exists in WCMS version 0.3.2. The vulnerability can be exploited to inject arbitrary web script and HTML via the type parameter of wex/cssjs.php...

CVE-2020-36208

An issue was discovered in the conquer-once crate before 0.3.2 for Rust. Thread crossing can occur for a non-Send but Sync type, leading to memory corruption...

Rust 安全漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability existed in Rust prior to version 0.3.2. The vulnerability stems from a possible thread crossover in a program's non-sending but synchronized type, which could be exploited by an attacker...

UBUNTU-CVE-2019-14247

The scan function in mad.c in mpg321 0.3.2 allows remote attackers to trigger an out-of-bounds write via a zero bitrate in an MP3 file...

PT-2019-13559 · Mpg321 +1 · Mpg321 +1

Name of the Vulnerable Software and Affected Versions: mpg321 version 0.3.2 Description: The issue allows remote attackers to trigger an out-of-bounds write via a zero bitrate in an MP3 file, specifically through the scan function in mad.c. Recommendations: For mpg321 version 0.3.2, consider...

Tor memory misreference vulnerability (CNVD-2018-05900)

Tor The Onion Router is a second-generation implementation of onion routing, primarily used for anonymous access to the Internet. A memory misreference vulnerability exists in version 0.3.2.x prior to Tor 0.3.2.10. A remote attacker could exploit this vulnerability to cause a denial of service...

sdrtrunk - Tool For Decoding, Monitoring, Recording And Streaming Trunked Mobile And Related Radio Protocols Using Software Defined Radios (SDR)

A cross-platform java application for decoding, monitoring, recording and streaming trunked mobile and related radio protocols using Software Defined Radios SDR. Getting Started User's Manual Version 0.3.0 Download Support Figure 1: sdrtrunk Version 0.3.0 Application Screenshot End User...

[SECURITY] [DLA 650-1] mat security update

Package : mat Version : 0.3.2-1+deb7u1 Debian Bug : 826101 An implementation flaw was discovered in mat, the metadata anonymisation toolkit. The implementation of PDF support lacks support to anonymize the metadata in embedded images. As there is no easy fix for this flaw, it was decided that PDF...

Onyx - Multiple Cross-Site Scripting Vulnerabilities

Onyx - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/42446/info Onyx is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script cod...

PostNuke FormExpress Module - Blind SQL Injection

PostNuke FormExpress Module - Blind SQL Injection Date: 17/03/2010 Software Link: http://sourceforge.net/projects/pn-formexpress/ Version: 0.3.2 PostNuke ContentExpress Module Blind Sql Injection Reported by Sharif University of Technology CSIRT Vulnerability Analysis and Penetration Testing Grou...