BEQ BillQuick Web Suite SQL注入漏洞

BEQ BillQuick Web Suite is a time and billing system from BEQ USA. BQE BillQuick Web Suite suffers from a SQL injection vulnerability that stems from BQE BillQuick Web Suite 2018 through 2021 allows SQL injection to be used for unauthenticated remote code execution, such as that exploited in the...

PT-2021-4673

Name of the Vulnerable Software and Affected Versions BQE BillQuick Web Suite versions 2018 through 2021 before 22.0.9.1 Description The issue allows SQL injection for unauthenticated remote code execution, which has been exploited in the wild in October 2021 for ransomware installation. SQL...

CVE-2019-4052

IBM API Connect 2018.1 and 2018.4.1.2 apis can be leveraged by unauthenticated users to discover login ids of registered users. IBM X-Force ID: 156544...

PT-2019-16838 · Ibm · Api Connect

Name of the Vulnerable Software and Affected Versions: API Connect versions 2018.1 through 2018.4.1.1 Description: The issue concerns an access token leak. Authorization tokens in some URLs can result in the tokens being written to log files. Recommendations: For API Connect versions 2018.1 throu...

CVE-2018-15923

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure...

CVE-2018-12842

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an integer overflow vulnerability. Successful exploitation could lead to information disclosure...

CVE-2018-12833

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution...

CVE-2018-5039

Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure...

CVE-2018-12789

Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure...

Genann Buffer Overflow Vulnerability

Genann is an open source neural network library. A stack buffer overflow vulnerability exists in the 'genanntrain' function of the genann.c file in Genann versions 2018-07-08 and earlier, which can be exploited by an attacker to cause an out-of-bounds read of the stack buffer...

CVE-2018-4979

Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have a Security Bypass vulnerability. Successful exploitation could lead to information disclosure...

PT-2018-10786 · Libyal · Libfsntfs

Name of the Vulnerable Software and Affected Versions: libfsntfs versions through 2018-04-20 Description: The issue allows remote attackers to cause an information disclosure via a crafted ntfs file. This is due to a heap-based buffer over-read in the libfsntfs reparse point values read data...