11 matches found
CVE-2026-31972
SAMtools is a program for reading, manipulating and writing bioinformatics file formats. The mpileup command outputs DNA sequences that have been aligned against a known reference. On each output line it writes the reference position, optionally the reference DNA base at that position obtained fr...
CVE-2026-31972
SAMtools is a program for reading, manipulating and writing bioinformatics file formats. The mpileup command outputs DNA sequences that have been aligned against a known reference. On each output line it writes the reference position, optionally the reference DNA base at that position obtained fr...
CVE-2026-31972
Summary: CVE-2026-31972 affects SAMtools mpileup, where under certain conditions, data discarded from memory too early causes a use-after-free, enabling potential leakage of program state and possible crashes. Affected components (from sources): the mpileup output path in SAMtools; memory managem...
WordPress Moving Media Library plugin <= 1.22 - Authenticated (Administrator+) Directory Traversal to Arbitrary File Deletion vulnerability
Authenticated Administrator+ Directory Traversal to Arbitrary File Deletion vulnerability discovered by omstaendlig in WordPress Plugin Moving Media Library versions = 1.22...
WordPress Plugin LH Add Media From Url 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in...
Command injection
Dasan Networks - W-Web versions 1.22-1.27 - CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'...
CVE-2023-42495 Dasan Networks - W-Web versions 1.22-1.27 - CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Dasan Networks - W-Web versions 1.22-1.27 - CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'...
Jenkins Plugin NeuVector Vulnerability Scanner Plugin Security Vulnerability
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...
PT-2022-15854 · Jenkins · Jenkins Publish Over Ssh Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Publish Over SSH Plugin versions 1.22 and earlier Description: A cross-site request forgery CSRF issue allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials. Recommendations: For Jenkins...
Jenkins Plugin 跨站请求伪造漏洞
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Publish Over SSH Plugin in version 1.22 and earlier contains a cross-site request forgery vulnerability that stems...
PT-2021-14673 · Jenkins · Jenkins Extra Columns Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Extra Columns Plugin versions 1.22 and earlier Description: The issue results in a stored cross-site scripting XSS vulnerability due to the plugin not escaping parameter values in the build parameters column. This vulnerability is...