4 matches found
CVE-2026-7628
The CVE-2026-7628 affects crazyrabbitLTC mcp-code-review-server (up to version 0.1.0). The vulnerability is in RepoMix Command Handler’s function executeRepomix (src/repomix.ts), where a manipulation yields command injection. Exploitation can be remote, and public exploit code is available. The i...
CVE-2020-37035
e-Learning PHP Script 0.1.0 contains a SQL injection vulnerability in the search functionality that allows attackers to manipulate database queries through unvalidated user input. Attackers can inject malicious SQL code in the 'search' parameter to potentially extract, modify, or access sensitive...
CVE-2022-44051
The d8s-stats for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-math package. The affected version of d8s-htm is 0.1.0...
The vulnerability of the Videolabs libmicrodns 0.1.0 message parser allows a malicious actor to cause a service failure by exploiting a resource consumption issue in the VideoLAN VLC media player.
The vulnerability of the Videolabs libmicrodns 0.1.0 message parser, when used with the VideoLAN VLC media player, is related to an uncontrolled resource consumption during the analysis of mDNS messages. Exploiting this vulnerability could allow a malicious actor to cause service failures remotel...