Stack Overflow

cn.hutool: hutool-core is vulnerable to Stack Overflow Error. The vulnerability is due to a defect in the NumberUtil.toBigDecimal function which results in StackOverflowError when a NaN value is passed as an argument to the function. This eventually results in application crash resulting in Denia...

Race Condition

github.com/deis/workflow-manager is vulnerable to Race Condition. The vulnerability is caused when the shared resource parameter clusterid is called concurrently. An attacker can potentially modify a shared resource by exploiting this vulnerability...

Buffer Overflow

libmikmod.so is vulnerable to Buffer Overflow. The vulnerability is due in loadult.c there is no boundary check for the number of channels numchn, This allows an attacker can craft a file with an abnormally high number of channels cause buffer overflow potentially leads to DOS...

Path Traversal

typo3/cms-core is vulnerable to Path Traversal. The vulnerability arises due to a lack of file path sanitization in the baseuri field within the /typo3/record/edit endpoint, allowing an attacker with administrator privileges to arbitrary view files from the filesystem...

Open Redirect

Flask-Security-Too is vulnerable to Open Redirect. The vulnerability arises due to a lack of redirect validation in the next parameter within the /login and /register routes. An attacker could redirect users to malicious sites via a crafted URL...

Cross-Site Scripting

cacti is vulnerable to Cross-Site Scripting. The vulnerability is due to in templatesimport.php When uploading an xml template file, if the XML file does not pass the check, the server will give a JavaScript pop-up prompt, which contains unfiltered xml template file name, potentially leads to XSS...

Buffer Overflow

libmikmod.so is vulnerable to Buffer Overflow. The vulnerability is due to the ITLoad function within loadit.c because there no proper validation or limits on the data being read from envelope data in tracker files, such as panpts, pitpts etc. This allows an attacker to craft Impulse Tracker file...

Arbitrary File Upload

dilab/resumable.php is vulnerable to Arbitrary File Upload. The vulnerability arises due to a lack of file upload path validation within Resumable.php. An attacker can arbitrarily upload any non existing file on the filesystem...

Stack Overflow

cn.hutoolhutool-core is vulnerable to Stack Overflow. The vulnerability is due to a infinite loop in the StrSplitter.splitByRegex method which results in a StackOverflow. This can eventually result in an application crash resulting in Denial Of Service DoS...

Denial Of Service (DoS)

org.mvel: mvel2 is vulnerable to Denial Of Service DoS. The vulnerability is due to the ParseTools.subCompileExpression method which times or executes for an indefinite time when parsing a crafted MVFLEX Expression MVEL. A malicious user can craft an MVEL expression and pass to the...

Cross Site Scripting (XSS)

Cacti is vulnerable to Cross Site Scripting XSS. The vulnerability is due to missing XML file name sanitization during template upload. If the template fails the checks, the raw filename is displayed as a JavaScript pop-up prompt. An attacker can upload a XML filename including a JavaScript...

SQL Injection And Path Traversal

Cacti is vulnerable to SQL Injection and Path Traversal. The vulnerability is caused due to improper input sanitization within link.php component. This allows an authorized user to execute arbitrary code on the server...

SQL Injection

Cacti is vulnerable to SQL Injection. The vulnerability is due to a lack of input sanitization in pollers.php script. This allows an attacker to potentially execute malicious SQL code, resulting in a SQL injection...

Cross Site Scripting(XSS)

cacti:sid library is vulnerable of Cross Site Scripting. The vulnerability is due to execution of arbitrary Java script code in the attacked user's browser by using vulnerable component is the graphsnew.php. It allows the attacker to execute of arbitrary Java script code and leads to DOM XSS atta...

Cross-site Scripting (XSS)

cacti, sid is vulnerable of cross site scriptingxss. The vulnerability due to victim browser execute malicious code when their mouse over the malicious data source path in datadebug.php. It allows an authenticated user to poison data stored in the cacti's database and finally it leads to cross si...

SQL Injection

Cacti is vulnerable to SQL Injection vulnerability. The vulnerability is due to improper sanitization and validation via the formactions function in the managers.php function. This issue can be exploited by an attacker to obtain sensitive information via SQL Injection...

SQL Injection (SQLi)

cacti:sid is a vulnerable of SQL Injection SQLi. The vulnerability due to receiving feature of SNMP Notification in the file ‘managers.php’. It leads to SQL Injection by allows the authenticated attacker with the “Settings/Utilities” permission can send a crafted HTTP GET request to the endpoint...

Buffer Overflow

SQLite is vulnerable to heap-based buffer overflow. The vulnerability is due to the sessionReadRecord function within ext/session/sqlite3session.c, which allows an attacker to manipulate the pIn parameter which results in a buffer overflow...

Weak Hashing Algorithm

bsock is vulnerable to a Weak Hashing Algorithm. The vulnerable is due to the libraries usage of weak hashing algorithm MD5, SHA1 within vendor\faye-websocket.js. This could allow an attacker to break the confidentiality of the websocket communication...

CGI Abuse

Gitlab is vulnerable to CGI Abuse. An attacker can abuse scan execution policies to run pipelines as another user compromising Confidentiality and Integrity of the system...

Regular Expression Denial Of Service (ReDoS)

gitlab is vulnerable to Regular Expression Denial of Service. The vulnerability is due to inefficient regular expression complexity in GitLab's Jira prefix handling,this allows with certain inputs causing excessive consumption of resources thats leading to a ReDoS...

Improper Authorization

gitlab:sid is a vulnerable of improper authorization. The vulnerability due to effect of GitLab CE/EE and it does not performs an authorization check when an actor attempts to access. It leads to improper authorization by allow an attacker to leak the owner's Sentry instance projects...

Improper Access Control

gitlab:sid is vulnerable of improper access control. The vulnerability due to improper permission validation and fails to authorization check. It leads to allow an attacker to edit labels description by an unauthorized user...

Denial Of Service (DOS)

gitlab is vulnerable to Denial Of Service. The vulnerability is due to lack of proper input sanitization in the search functionality of the Harbor Registry, allowing attackers for the execution of a Regular Expression Denial of Service through specially crafted payloads...

Stack Buffer Overflow

MP3Gain is vulnerable to Stack Buffer Overflow. The vulnerability is caused due to the WriteMP3GainAPETag function.This potentially leads to Denial of Service DoS Attack...

Code Injection

gitlab:sid is vulnerable of code injection. The vulnerability due to compromise the source code and incorrectly neutralizes special elements in GitLab CE/EE. It leads to allow an attacker to modify the syntax or behavior of the intended code segment...

Cross-site Scripting

gitlab:sid is vulnerable of cross site scripting. The vulnerability due to the manipulation with an unknown input in Jira integration configuration in GitLab CE/EE and does not neutralize user-controllable input before it is placed in output. It leads to cross site scripting by allow an attacker ...

Improper Access Control

gitlab:sid is vulnerable of Improper Access Control. The vulnerability due to leak the sentry token by changing the configured URL in the Sentry error tracking settings page. It allow an attacker to leak sentry token under specific circumstances...

Sensitive Information Disclosure

gitlab:sid is vulnerable to Sensitive Information Disclosure. The vulnerability is due to the exposure of sensitive information which affects in GitLab versions from 10.6 before 16.1.5. This vulnerability allows the attacker to read limited information about any project's imports...

Improper Access Control

Gitlab is vulnerable to Improper Access Control. The vulnerability is caused due to improper permission validation while granting access to git lab projects. An attacker can fork a project outside of current group and can compromise the target system...

Denial Of Service (DOS)

gitlab is vulnerable to Denial Of Service. The vulnerability is due to user can bypass or skip the pagination mechanism in the projects API. Such a bypass can lead to potential Denial of Service DoS attacks on certain instances...

Unauthorized Access

GitLab is vulnerable to Unauthorized Access.The vulnerability is caused due to improper access controls. This could allows an attacker to access sensitive information within private projects,configurations, and other confidential data associated with CI/CD jobs...

Improper Neutralization Of Special Elements

gitlab is vulnerable to Improper Neutralization of Special Elements. The vulnerability is due to there is no proper validation for user-supplied input, specifically when committing directories containing LF Line Feed characters. This flaw results in HTTP 500 errors when viewing the affected commi...

Information Disclosure

GitLab is vulnerable to Information Disclosure. The vulnerability is caused due to improper error handling. This leads to a leakage of a user's email via an error message for groups that restrict membership by email domain...

Open Redirect

GitLab is vulnerable to Open Redirect vulnerability. The vulnerability is caused due to improper URL sanitization in Gitlab. This could allow an attacker to create a URL that would redirect to a different project...

Insufficient Verification Of Data Authenticity

gitlab is vulnerable to Insufficient Verification of Data Authenticity. The vulnerability is due to there is no checking for owner or administrator privileges while creating fork relationships between existing projects contrary to the documentation using API calls...

Code Injection

gitlab is vulnerable to Code Injection. The vulnerability is due to there is no sanitization of KaTeX directives, allowing them to escape their intended container. This allows an attacker to hijack some links and buttons on the GitLab UI to a malicious page...

Denial Of Service (DoS)

GitLab CE/EE is vulnerable to Denial Of Service DoS. The vulnerability is caused due to invalid 'startsha' value on the merge requests page in GitLab.This potentially leads to Denial Of Service DoS attack...

Denial Of Service

gitlab:sid is a vulnerable of Denial of Service. The vulnerability is due to Improper Input Validation and also affecting all versions of Gitlab EE and CE. It leads to denial of service by allow an attacker to cause pipelines to fail...

Denial Of Service

gitlab:sid is vulnerable of Denial Of Service. The vulnerability is due to by adding a large string in timeout input in gitlab-ci.yml file. It allow an attacker to effect all versions in GitLab CE/EE and leads to regular expression denial of service...

Improper Access Control

Gitlab is vulnerable to Improper Access Control. The vulnerability is caused due to a missing permission validation for a user while accessing git lab project dependencies. A user can access composer packages on public projects that have package registry disabled in the project settings...

Improper Authorization

Gitlab is vulnerable to Improper Authorization. It is possible for unauthorized users to view public project release descriptions via atom endpoint...

Insufficient Verification Of Data Authenticity

exim4 library is vulnerable to Insufficient Verification of Data Authenticity. The vulnerability is due to insufficient verification Exim's SMTP server configurations as it support a character sequence . in SMTP transactions, which is not universally supported by other popular email servers. This...

SMTP Smuggling

Postfix is vulnerable to SMTP smuggling. The vulnerability is caused due to support for . while handling line endings. A remote attacker can exploit this using published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection...

Arbitrary Code Execution

github.com/free5gc/amf/ is vulnerable to Arbitrary Code Execution. The vulnerability arises due to a lack of validation for invalid NGAP messages. An attacker can execute remote code and cause DoS via a crafted NGAP message...

Stored Cross Site Scripting (XSS)

WSO2 is vulnerable to Stored Cross Site Scripting XSS. The vulnerability is due to improper output encoding. This issue can be exploited by an attacker by injecting malicious JavaScript payloads into the Registry feature of the Management Console...

Improper Certificate Validation

Snowflake.data is vulnerable to Improper Certificate Validation. The vulnerability is due to not checking the Certificate Revocation List CRL when insecureMode is set to its default value of false. This allows an attacker with access to the private key of a correctly issued certificate to execute...

Incorrect Authorization

Nautobot is vulnerable to Missing Authorization. The vulnerability is due to a lack of proper enforcement of object-level permissions when submitting a job to run. This could allow an attacker with permissions to run only a single job to run all configured JobButton Jobs...

CSV Injection

Active Admin is vulnerable to CSV Injection. This vulnerability is due to missing sanitization while exporting a CSV file. An attacker can inject malicious data to a CSV file such as =, +, -', @, \t, \r which results in arbitrary macro execution if the csv file is opened in software such as excel...

Man-in-the-Middle (MitM)

systemd:sid is vulneranble to Man-in-the-Middle MitM. The vulnerability due to systemd-resolved accept records of DNSSEC-signed domains. It allows an attacker to manipulate records with out any signature...