EUVD-2026-22239

Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. This can occur due to sslverify in openid-connect plugin configuration being set to false by default. This issue affects Apache APISIX: from 0.7 through 3.15.0. Users are recommended to upgrade to version 3.16.0, whic...

PT-2026-32602

Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. This can occur due to ssl verify in openid-connect plugin configuration being set to false by default. This issue affects Apache APISIX: from 0.7 through 3.15.0. Users are recommended to upgrade to version 3.16.0, whi...

CVE-2024-51607

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in percent20 Golf Tracker golf-tracker allows SQL Injection.This issue affects Golf Tracker: from n/a through = 0.7...

PT-2024-34749 · Unknown · Buddy Lindsey Golf Tracker

Name of the Vulnerable Software and Affected Versions: Buddy Lindsey Golf Tracker versions 0.7 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...

WordPress Pmpro Membership Maps Plugin < 0.7 is vulnerable to Sensitive Data Exposure

Software Pmpro Membership Maps Type Plugin Vulnerable versions 0.7 Fixed in 0.7 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1286 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID a7b3657c40ef Credits Scott Kingsley Clark...

Eclipse Memory Analyzer Code Issue Vulnerability

Eclipse Memory Analyzer is a memory analysis tool from the Eclipse Foundation. A security vulnerability exists in Eclipse Memory Analyzer versions 0.7 through 1.14.0, which stems from not filtering reports on partial XML files...

GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2019-12548)

GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the 'dwgdecodeeeddata' function of the decode.c file in GNU LibreDWG version 0.7 and version 0.7.1645. An attacker could exploit this vulnerability to execute code or cause a denial of...

GNU LibreDWG Buffer Overflow Vulnerability

GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the 'dwgdxfLTYPE' function of the dwg.spec file in GNU LibreDWG version 0.7 and 0.7.1645, which can be exploited by an attacker to cause a denial of service...

GNU LibreDWG Buffer Overflow Vulnerability (CNVD-2019-12559)

GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the 'dxfheaderwrite' function of the headervariablesdxf.spec file in GNU LibreDWG version 0.7 and 0.7.1645. An attacker could exploit this vulnerability to cause a denial of service...

Newsbeuter Code Execution Vulnerability

Newsbeuter is an open source RSS/Atom reader for text terminals running on Unix-like operating systems such as Linux, FreeBSD, and Mac OS X. It can be used in a variety of applications, such as mobile phones, mobile devices, and mobile phones. A security vulnerability exists in the operating syst...

UBUNTU-CVE-2017-12904

Improper Neutralization of Special Elements used in an OS Command in bookmarking function of Newsbeuter versions 0.7 through 2.9 allows remote attackers to perform user-assisted code execution by crafting an RSS item that includes shell code in its title and/or URL...