10 matches found
Astra Linux - уязвимость в imagemagick
A memory leak in ImageMagick 7.0.10-45 and 6.9.11-22 allows remote attackers to perform a denial of service attack through the “identify -help” command...
WordPress plugin Grand Restaurant 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...
@8btc/excalidraw (>=0.18.0-beta.0 <=0.18.0-beta.4), @airmix/mcp-excalidraw-server (=1.0.6) +331 more potentially affected by CVE-2025-57347 via dagre-d3-es (>=7.0.10 <=7.0.11)
dagre-d3-es NPM version =7.0.10, =0.18.0-beta.0, =0.17.0-alkemio-1, =1.0.0, =0.18.3, =0.18.0, =0.0.1-BETA, =0.18.1, =1.1.4, =0.17.1, =0.0.19, =0.0.21 and more Source cves: CVE-2025-57347 Source advisory: SNYK:JS-DAGRED3ES-13110069...
CVE-2025-49315 WordPress Persian Woocommerce SMS <= 7.0.10 - SQL Injection Vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in PersianScript Persian Woocommerce SMS allows SQL Injection. This issue affects Persian Woocommerce SMS: from n/a through 7.0.10...
ImageMagick 安全漏洞
ImageMagick is a set of open-source image processing software from the American company ImageMagick. The software can read, convert or write images in a variety of formats. A security vulnerability exists in ImageMagick versions 7.0.10-45 and 6.9.11-22, which stems from the presence of a memory...
CVE-2023-22018
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.46 and Prior to 7.0.10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via RDP to compromise Oracle VM...
Imagemagick Studio ImageMagick 缓冲区错误漏洞
ImageMagick is a software for creating, editing, and composing images that can read, convert, and write images in many formats. A heap buffer overflow vulnerability exists in coders/tiff.c in versions of ImageMagick prior to 7.0.10-45. An attacker can exploit this vulnerability to cause a denial ...
CVE-2020-4772
An XML External Entity Injection XXE vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. A remote attacker could exploit this vulnerability to expose sensitive information, denial of service, server side request forgery or consume memory resources. IBM X-Force ID: 18915...
CVE-2020-4773
A cross-site request forgery CSRF vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10, which is an attack that forces a user to execute unwanted actions on the web application while they are currently authenticated. This applies to a single server class only, with no...
Security Bulletin: IBM Cúram Social Program Management uses MD5 algorithm (CVE-2020-4778)
Summary IBM Cúram Social Program Management uses MD5 algorithm for hashing token in a single instance which less safe than default SHA-256 cryptographic algorithm used throughout the Cúram application. Vulnerability Details CVEID: CVE-2020-4778 DESCRIPTION: IBM Cúram Social Program Management use...