16 matches found
UBUNTU-CVE-2026-41196
Luanti formerly Minetest is an open source voxel game-creation platform. Starting in version 5.0.0 and prior to version 5.15.2, a malicious mod can trivially escape the sandboxed Lua environment to execute arbitrary code and gain full filesystem access on the user's device. This applies to the...
CVE-2026-41196
Luanti formerly Minetest is an open source voxel game-creation platform. Starting in version 5.0.0 and prior to version 5.15.2, a malicious mod can trivially escape the sandboxed Lua environment to execute arbitrary code and gain full filesystem access on the user's device. This applies to the...
EUVD-2002-0950
Malware in sbrugna...
EUVD-2002-0949
Malware in sbrugna...
voxel-informatica.it Improper Access Control vulnerability OBB-3844568
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
What’s New for Developers: September 2022
Learn about Akamai’s voxel art contest, the updates to EdgeWorkers and EdgeKV demo sites, and how the beta Test Center CLI allows you to test the behavior of configuration changes on your own in this month’s blog...
CVE-2022-35978
CVE-2022-35978 (Minetest) affects Minetest prior to patched releases. In single-player mode, a mod can set a global setting that controls the Lua script loaded to display the main menu. The script is loaded as soon as the game session ends, and the Lua environment for the menu is not sandboxed, a...
voxel-design.de Cross Site Scripting vulnerability OBB-2807054
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Voxel Dot Net CBMS 0.x Multiple Code Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/4957/info It has been reported that multiple vulnerabilities exist in CBMS. Reportedly, it is possible to inject both JavaScript and SQL code into the system. It may be possible to execute script code within the context o...
CVE-2002-0961
Vulnerabilities in Voxel Dot Net CBMS 0.7 and earlier allow remote attackers to conduct unauthorized operations as other users, e.g. by deleting clients via dltclnt.php, possibly in a SQL injection attack...
CVE-2002-0960
Multiple cross-site scripting vulnerabilities in Voxel Dot Net CBMS 0.7 and earlier allows remote attackers to execute arbitrary script as other CBMS users...
CVE-2002-0960
Multiple cross-site scripting vulnerabilities in Voxel Dot Net CBMS 0.7 and earlier allows remote attackers to execute arbitrary script as other CBMS users...
CVE-2002-0960
CVE-2002-0960 describes multiple cross-site scripting vulnerabilities in Voxel Dot Net CBMS 0.7 and earlier . The flaws allow remote attackers to execute arbitrary script in the context of other CBMS users, implying user-session impact and potential credential exposure via manipulated inputs. The...
CVE-2002-0961
The CVE-2002-0961 entry concerns Voxel Dot Net CBMS 0.7 and earlier. Affected software: Voxel Dot Net CBMS (0.7 and earlier). Vulnerability: remote attackers may perform unauthorized operations as other users, for example deleting clients via dltclnt.php, with potential SQL injection in play. Roo...
CVE-2002-0961
Vulnerabilities in Voxel Dot Net CBMS 0.7 and earlier allow remote attackers to conduct unauthorized operations as other users, e.g. by deleting clients via dltclnt.php, possibly in a SQL injection attack...
CBMS: XSS and SQL Injection holes
CBMS: XSS and SQL Injection holes PROGRAM: CBMS VENDOR: Voxel Dot Net, Inc. [email protected] HOMEPAGE: http://www.voxel.net/projects/cbms/ VULNERABLE VERSIONS: 0.7 and possibly earlier versions as well LOGIN REQUIRED: yes SEVERITY: high VERSION OF THIS ADVISORY: 1.1 DESCRIPTION: "The CBMS is a full...