Improper Access Control

undici is vulnerable to Improper Access Control. This vulnerability is due to insufficient validation of the integrity option passed to the fetch function. If an attacker can manipulate the integrity option passed to the fetch method, the request will be accepted even if the request was tampered...

Sql Injection

centreon/centreon is vulnerable to Sql Injection.The vulnerability is due to inadequate validation of user-supplied input in the updateContactHostCommands function, enabling attackers to execute arbitrary code with the privileges of the service account...

Denial Of Service (DOS)

golang.org/x/net is vulnerable to Denial Of Service DoS. The vulnerability is due to a lack of header frame limits, allowing an attacker to send excessive CONTINUATION frames which causes the endpoint to read arbitrary amounts of header data without proper memory allocation limits...

Information Exposure

Quarkus-core is vulnerable to Information Exposure. The vulnerability is due to the capture of local environment variables from the Quarkus namespace during the build process, leading to applications inheriting potentially sensitive or test-specific settings at runtime...

Remote Code Execution (RCE)

pgAdmin is vulnerable to Remote Code Execution RCE. The vulnerability is due improper validation within the binary path API, which allows attackers to execute arbitrary code on the server...

Cross-Site Scripting (XSS)

github.com/alexxit/go2rtc is vulnerable for Cross-Site Scripting XSS. The vulnerability due to the links.html page appending the src GET parameter in all of its links for 1-click previews, where the context of appending is innerHTML, leading to the insertion of the text as HTML which results in X...

Integer Overflow

GTKWave 3.3.115 is vulnerable to an Integer Overflow. The vulnerability is caused due to a defect in the FSTBLGEOM parsing maxhandle functionality when compiled as a 32-bit binary. A specially crafted .fst file can lead to memory corruption when the user opens a malicious file to trigger this...

TLS Certificate Check Bypass

libcurl is vulnerable to TLS Certificate Check Bypass. The vulnerability is caused due to libcurl not checking the server certificate of TLS connections done to a host specified as an IP address, when built to use mbedTLS. libcurl would wrongly avoid using the set hostname function when the...

Type Confusion

Chrome is vulnerable to Type Confusion. The vulnerability is due to a Type Confusion weakness in WebAssembly Wasm Open Standard in Google Chrome. An attacker can exploit this vulnerability using a crafted HTML page leading to Remote code execution RCE...

Use-After-Free

chromium is vulnerable to a Use-After-Free. The vulnerability due to improper handling of memory in the WebCodecs component. It allows a remote attacker to execute arbitrary read/write operations via a crafted HTML page...

Use-After-Free

chromium is vulnerable to Use-After-Free . The vulnerability is due to memory corruption caused by accessing previously freed memory. It allows a remote attacker to potentially exploit heap corruption by leveraging a crafted HTML page...

Use-After-Free

chromium is vulnerable to Use-After-Free. The vulnerability is due to memory corruption caused by accessing previously freed memory. It allows a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Cross-Site Scripting (XSS)

github.com/ossrs/srs is vulnerable to Cross-Site Scripting. The vulnerability is due to insufficient input validation on the /api/v1/vhosts/vid-?callback= endpoint. This allowing the injection of malicious JavaScript payloads through the callback function name...

Command Injection

Cockpit is vulnerable to Command Injection. The vulnerability is due to a flaw in handling the deletion of sosreports with crafted names via the Cockpit web interface, potentially leading to privilege escalation...

XML Injection

verapdf is vulnerable to Remote Code Execution RCE. The vulnerability is caused by executing policy checks using custom schematron files, which invokes an XSL transformation that could lead to code execution...

Denial Of Service (DoS)

Temporal Server is vulnerable to Denial of Service DoS. The vulnerability is caused by an authenticated user with permissions to interact with workflows submitting an invalid UTF-8 string which causes an application crash. This can lead to stuck tasks in the queue, increased queue lag, resource...

Path Traversal

vite is vulnerable to Path Traversal. The vulnerability is due to mishandling patterns containing directories caused by the server.fs.deny option. This allows an attacker to gain unauthorized access to certain files...

Cross-site Scripting (XSS)

Concrete CMS is vulnerable to Stored Cross-Site Scripting XSS. The vulnerability is due to insufficient validation of administrator-provided data, allowing a rogue administrator to insert malicious code into the custom class field...

Cross-site Scripting (XSS)

Concrete CMS is vulnerable to Cross-site Scripting XSS. The vulnerability is due to the lack of proper input validation, allowing an administrator to execute stored XSS by changing a filter that a rogue administrator had previously tampered with, thereby injecting malicious code...

Cross-site Scripting (XSS)

Concrete CMS is vulnerable to Cross-site Scripting XSS. The vulnerability is due to user input not being properly escaped, allowing a rogue administrator to inject malicious JavaScript into the Calendar Color Settings screen, which may then be executed when users visit the affected page...

Local File Inclusion

voila is vulnerable to Local File Inclusion. The vulnerability is due to improper handling of file paths within app.py which allows an attacker to access readable files on the server's filesystem...

Arbitrary Code Execution

dolibarr/dolibarr is vulnerable to Arbitrary Code Execution. The vulnerability is due to insufficient sanitization during the installation process, enabling an attacker with adjacent network access to execute arbitrary code by providing specially crafted input...

Insecure Direct Object Reference (IDOR)

bagisto/bagisto is vulnerable to Insecure Direct Object Reference IDOR. The vulnerability is due to insufficient validation of the invoice ID parameter in the print function within OrderController.php. This flaw allows an attacker to retrieve sensitive information, resulting in Information...

Improper Input Validation

Apache Axis is vulnerable to Improper Input Validation. The vulnerability is caused due to improper input validation in the getService method within ServiceFactory.java. This can potentially lead to Denial of Service, Server Side request forgery, or Remote Code Execution attacks...

Information Disclosure

yaql is vulnerable to Information Disclosure. The vulnerability is due to improper handling of attribute access in the YAQL library's 'format' function, allowing unauthorized users to access sensitive information, including service account credentials...

Server Side Request Forgery

gleez/cms is vulnerable to a Server Side Request Forgery SSRF. The vulnerability is due to improper input validation within request.php, allowing remote attackers to execute arbitrary code or obtain sensitive information...

Cross Site Request Forgery

Prefect is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability is due to insufficient CSRF protection mechanisms, allowing an attacker to steal secrets or potentially gain remote code execution by submitting a crafted request...

Buffer Overflow

pillow is vulnerable to Buffer Overflow. The vulnerability is due improper use of strcpy when copying a buffer in imagingcms.c, which allows an attacker to submit a crafted image resulting in a buffer overflow...

Cross Site Scripting

concrete5/concrete5 is vulnerable to Cross Site Scripting. The vulnerability is due to insufficient validation of administrator provided data in the Advanced File Search Filter, allowing rogue administrators to add malicious code in the file manager...

Cross Site Scripting

concrete5/concrete5 is vulnerable to Cross Site Scripting XSS. This vulnerability is due to a lack of input sanitization, allowing a rogue administrator to insert malicious code into the link-text field when creating a file block...

Denial Of Service (DoS)

amphp/http-client is vulnerable to Denial Of Service. The vulnerability is due to unbounded buffering of HTTP/2 CONTINUATION frames until the ENDHEADERS flag is received, which results in a memory exhaustion crash...

Null Dereference

github.com/kubevirt/kubevirt is vulnerable to Null Dereference. The vulnerability is due to improper handling of calls to vm-dump-metrics --virtio, allowing an attacker to cause a denial of service by issuing a high number of such calls and subsequently deleting the virtual machine...

Missing Certificate Validation

localstack is vulnerable to Missing Certificate Validation. An attacker can eavesdrop on communications between the host and server by performing a man-in-the-middle attack...

Improper Input Validation

moodle/moodle is vulnerable to Improper Input Validation. The vulnerability is due to the handling of URL parameters in the forum search functionality. An attacker can manipulate the search feature by injecting unexpected parameters, potentially leading to information disclosure or other unintend...

Cross-Site Request Forgery (CSRF)

moodle/moodle is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability is due to the link to update all installed language packs not including a necessary CSRF token. An attacker can exploit this vulnerability by tricking a user into clicking on a crafted link or navigating to a...

Out-of-bounds Write

gtkwave is vulnerable to an Out-of-bounds Write. The vulnerability is due to a flaw in the LXT2 zlib block decompression functionality in .lxt2 file, allowing attackers to execute arbitrary code by crafting a malicious file...

Integer Overflow

gtkwave is vulnerable to Integer Overflow.The vulnerability is due to insufficient input validation and bounds checking within the VZT facgeometry parsing functionality in .vzt file, allow attackers to manipulate certain input parameters during the allocating the msb array...

Integer Overflow

gtkwave is vulnerable to Integer Overflow.The vulnerability is due to insufficient input validation and bounds checking within the VZT facgeometry parsing functionality in .vzt file, allow attackers to manipulate certain input parameters during the allocation of the rows array...

Integer Overflow

gtkwave is vulnerable to Integer Overflow.The vulnerability is due to insufficient input validation and bounds checking within the VZT facgeometry parsing functionality in .vzt file, allow attackers to manipulate certain input parameters during the allocation of the len array...

Integer Overflow

gtkwave is vulnerable to Integer Overflow.The vulnerability is due to insufficient input validation and bounds checking within the VZT facgeometry parsing functionality in .vzt file, allow attackers to manipulate certain input parameters during the allocation of the vindexoffset array...

Out-of-bounds Write

gtkwave is vulnerable to Out-of-bounds Write. The vulnerabilities stem from flaws in the VZT vztrdgetfacname decompression functionality in .vzt file, allowing arbitrary code execution via a specially crafted file...

Integer Overflow

gtkwave is vulnerable to Integer Overflow.The vulnerability is due to insufficient input validation and bounds checking within the VZT facgeometry parsing functionality in .vzt file, allow attackers to manipulate certain input parameters during the allocation of the flags array...

Integer Overflow

gtkwave is vulnerable to Integer Overflow.The vulnerability is due to insufficient input validation and bounds checking within the VZT facgeometry parsing functionality in .vzt file, allow attackers to manipulate certain input parameters during the allocation of the lsb array...

Out-of-bounds Write

gtkwave is vulnerable to Out-of-bounds Write. The vulnerabilities are due to flaws in the VZT vztrdgetfacname decompression functionality in .vzt file, allowing arbitrary code execution via a specially crafted file...

Integer Overflow

gtkwave is vulnerable to Integer Overflow. The vulnerability is due to insufficient input validation and bounds checking within th VZT vztrdblockvchdecode dictionary parsing functionality in .vzt file allow attackers to manipulate certain input parameters, particularly numtimeticks...

Integer Overflow

gtkwave is vulnerable to Integer Overflow.The vulnerability is due to insufficient input validation and bounds checking within the VZT vztrdblockvchdecode times parsing functionality in .vzt file, allow attackers to manipulate certain input parameters, particularly numtimeticks...

Integer Overflow

gtkwave is vulnerable to Integer Overflow.The vulnerability is due to insufficient input validation and bounds checking within the VZT vztrdblockvchdecode times parsing functionality in .vzt file, allow attackers to manipulate certain input parameters, particularly numtimeticks...

Integer Overflow

gtkwave is vulnerable to Integer Overflow. The vulnerability is due to insufficient input validation and bounds checking within the VZT vztrdblockvchdecode dictionary parsing functionality in .vzt file, allow attackers to manipulate certain input parameters, particularly numtimeticks...

Arbitrary Code Execution

gtkwave is vulnerable to Arbitrary Code Execution.This vulnerability arises from improper input validation in LXT2 lxt2rdexpandintegertobits function.An attacker could exploit this vulnerability by crafting a malicious .lxt2 file, which, when opened by a victim, could execute arbitrary code...

Cross Site Scripting (XSS)

francoisjacquet/rosariosis is vulnerable to Cross Site Scripting. The vulnerability is due to improper handling of input in the component Add Portal Note, leading to the execution of arbitrary JavaScript code...