130931 matches found
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16841)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16840)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-17028)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16752)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-17032)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-17041)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current process...
Online Banquet Booking System /admin/view-user-queries.php File SQL Injection Vulnerability
Online Banquet Booking System is an online banquet booking system. Online Banquet Booking System is vulnerable to a SQL injection vulnerability that stems from the viewid parameter in the /admin/view-user-queries.php file not being security filtered. No details of the vulnerability are available ...
Taxi Stand Management System admin/search-autoortaxi.php file cross-site scripting vulnerability
Taxi Stand Management System is a cab stand management system. The Taxi Stand Management System suffers from a cross-site scripting vulnerability that originates from the searchdata parameter in the /admin/search-autoortaxi.php file that does not effectively filter user input. An attacker can use...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16764)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
Apache Jena Input Validation Error Vulnerability
Apache Jena is the Apache Software Foundation's open source Java framework for building semantic web and linked data applications. A file path validation vulnerability exists in Apache Jena 5.4.0 and earlier versions, which stems from a failure to validate file access paths in configuration files...
WordPress JetSearch Cross-Site Scripting Vulnerability
WordPress JetSearch is an AJAX-based search plugin for WordPress , designed for Elementor editor , providing a fast , flexible and beautiful search experience . WordPress JetSearch suffers from a cross-site scripting vulnerability that stems from improper input neutralization, which can be...
WordPress WP-BusinessDirectory SQL Injection Vulnerability
WordPress WP-BusinessDirectory is a business directory plugin for the WordPress platform, which is mainly used to create and manage professional business directory websites, supporting the display of service provider information by location, category and other classifications, and monetizing...
WordPress ProfileGrid SQL Injection Vulnerability
WordPress ProfileGrid is a user management plugin that is mainly used to create user groups, communities and membership systems, supporting multi-role management, permission control and personalized configuration. WordPress ProfileGrid suffers from a SQL injection vulnerability that stems from...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16726)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-17029)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
Patient Record Management System xray_form.php File SQL Injection Vulnerability
Patient Record Management System is a medical record management system. Patient Record Management System suffers from a SQL injection vulnerability that originates from improper handling of the parameter itrno in the file /xrayform.php, which can be exploited by an attacker to bypass authenticati...
Apache Jena Path Traversal Vulnerability
Apache Jena is the Apache Software Foundation's Semantic Web framework for building and processing RDF data. A path traversal vulnerability exists in Apache Jena 5.4.0 and earlier versions, which originates from a user with administrator privileges being able to create database files outside of t...
Time Table Generator System Cross-Site Scripting Vulnerability
Time Table Generator System is a time table generator system. A cross-site scripting vulnerability exists in Time Table Generator System, which stems from the adminname parameter in the /admin/profile.php file not effectively filtering user input. No details of the vulnerability are available at...
WordPress Ultimate Push Notifications Missing Authorization Vulnerability
WordPress Ultimate Push Notifications is a plugin that is mainly used to implement real-time push functionality in WordPress websites, supporting sending desktop and mobile device notifications to users. WordPress Ultimate Push Notifications suffers from a lack of authorization vulnerability, no...
Ivanti Avalanche Manager Buffer Overflow Vulnerability
Ivanti Avalanche Manager is an enterprise mobile device management system developed by Ivanti for managing smartphones, tablets and other mobile devices. A buffer overflow vulnerability exists in Ivanti Avalanche Manager, which arises from a program that does not properly manage memory allocation...
WordPress Medical Prescription Attachment Plugin for WooCommerce Code Issue Vulnerability
WordPress Medical Prescription Attachment Plugin for WooCommerce is a plugin designed for WooCommerce, mainly used to help online pharmacies to realize the function of customers uploading doctor's prescription files in order to purchase medicines, vaccines and so on. WordPress Medical Prescriptio...
WordPress Restaurant Menu by MotoPress Cross-Site Request Forgery Vulnerability
WordPress Restaurant Menu by MotoPress is a menu plugin designed for the restaurant industry that supports free downloads and can be enhanced by adding paid extensions. WordPress Restaurant Menu by MotoPress has a cross-site request forgery vulnerability, the vulnerability stems from the WEB...
WordPress Image Wall Cross-Site Scripting Vulnerability
WordPress Image Wall is a WordPress plugin that allows users to browse blog posts or page content via images. WordPress Image Wall suffers from a cross-site scripting vulnerability that stems from improper input neutralization, which can be exploited by an attacker to execute a phishing attack by...
Taxi Stand Management System admin/admin-profile.php file cross-site scripting vulnerability
Taxi Stand Management System is a cab stand management system. The Taxi Stand Management System suffers from a cross-site scripting vulnerability that originates from the adminname parameter in the /admin/admin-profile.php file not effectively filtering user input. An attacker can exploit this...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16833)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-17039)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current process...
WordPress SMTP for Amazon SES SQL Injection Vulnerability
WordPress SMTP for Amazon SES is a plugin or configuration solution for sending emails via Amazon Simple Email Service in WordPress sites. WordPress SMTP for Amazon SES suffers from a SQL injection vulnerability that stems from improper input neutralization, and no detailed vulnerability details...
WordPress Responsive Addons for Elementor Cross-Site Scripting Vulnerability
WordPress Responsive Addons for Elementor is a free plugin that provides 80+ Elementor widgets and 150+ templates with support for 250+ pre-built page modules. WordPress Responsive Addons for Elementor suffers from a cross-site scripting vulnerability that stems from improper input neutralization...
WordPress JetBlocks For Elementor Cross-Site Scripting Vulnerability
WordPress JetBlocks For Elementor is an enhancement plugin designed specifically for Elementor to extend the functionality of your WordPress website. WordPress JetBlocks For Elementor suffers from a cross-site scripting vulnerability that stems from improper input neutralization, which can be...
Online Appointment Booking System getmanagerregion.php File SQL Injection Vulnerability
Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System has a SQL injection vulnerability that originates from improper handling of the parameter city in the file /admin/getmanagerregion.php, which can be exploited by an attacker to obtain...
Online Appointment Booking System adddoctorclinic.php File SQL Injection Vulnerability
Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System has a SQL injection vulnerability that originates from improper handling of the parameter clinic in the file /admin/adddoctorclinic.php, which can be exploited by an attacker to access...
Online Appointment Booking System addclinic.php File SQL Injection Vulnerability
Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System has a SQL injection vulnerability that originates from improper handling of the parameter cid in the file /admin/addclinic.php, no details of the vulnerability are available at this time...
Online Appointment Booking System deletedoctor.php File SQL Injection Vulnerability
Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that originates from improper handling of the parameter did in the file /admin/deletedoctor.php, which can be exploited by an attacker to inject...
D-Link DI-8100 Buffer Overflow Vulnerability
The D-Link DI-8100 is an enterprise-class router device from D-Link. A buffer overflow vulnerability exists in the D-Link DI-8100 version 16.07.26A1, which stems from improper handling of the outaddr/inaddr/outport/proto parameters in the /menunat.asp file in the HTTP request processing component...
Dell PowerScale OneFS Encryption Issue Vulnerability
Dell PowerScale OneFS is an enterprise-class distributed file storage system from Dell. A security vulnerability exists in Dell PowerScale OneFS versions prior to 9.11.0.0 that stems from the use of an insecure encryption algorithm. An attacker could exploit the vulnerability to cause information...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16725)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16736)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16751)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16742)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16748)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16724)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16723)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16741)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16731)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-17038)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current process...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16738)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16737)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16740)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...
IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16739)
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...