OctoPrint 安全漏洞

OctoPrint is an open source application from OctoPrint. Provides a fast web interface for controlling consumer 3D printers. A security vulnerability exists in OctoPrint version 1.10.2 and prior versions. An attacker exploiting this vulnerability could retrieve or modify sensitive configuration...

phlex 安全漏洞

phlex is a framework for building object-oriented views in Ruby. A security vulnerability exists in Phlex versions prior to 1.10.2, which stems from maliciously generated HTML attribute names and values in Phlex that could lead to cross-site scripting...

SUSE CVE-2016-9809

Off-by-one error in the gsth264parsesetcaps function in GStreamer before 1.10.2 allows remote attackers to have unspecified impact via a crafted file, which triggers an out-of-bounds read...

Enhancesoft osTicket cross-site scripting vulnerability (CNVD-2018-07903)

Enhancesoft osTicket is a U.S. Enhancesoft's open source ticketing system. A cross-site scripting vulnerability exists in the /scp/index.php file in Enhancesoft osTicket versions prior to 1.10.2. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the 'sor...

Enhancesoft osTicket Arbitrary Password Reset Vulnerability

Enhancesoft osTicket is a U.S. Enhancesoft's open source ticketing system. A security vulnerability exists in Enhancesoft osTicket versions prior to 1.10.2. A remote attacker can exploit the vulnerability to reset arbitrary passwords...

gstreamer: Invalid memory read in g_type_check_instance_is_fundamentally_a

The gstdecodechainfreeinternal function in the flxdex decoder in gst-plugins-good in GStreamer before 1.10.2 allows remote attackers to cause a denial of service invalid memory read and crash via an invalid file, which triggers an incorrect unref call...