Business Logic Errors

microweber is vulnerable to Business Logic Errors. The vulnerability exists due to a lack of coupon code validation. which allows attackers to change coupon codes and lower prices...

Denial Of Service (DoS)

@octokit/webhooks is vulnerable to Denial Of Service DoS. The vulnerability is caused by a lack of exception handling in the verifyAndReceive method within src/verify-and-receive.ts. This method internally calls another method verify which throws an exception which remains unhandled. This uncaugh...

Cross-Site Scripting (XSS)

thorsten/phpmyfaq is vulnerable to Cross-Site Scripting. The vulnerability is due to ajax.tags.php and tags.js having improper tagName sanitization for. This can lead to Stored XSS if a tag name contains malicious JavaScript code...

SQL Injection

org.apache.streampark, streampark is vulnerable to SQL Injection. The vulnerability is due to not sanitizing user input used inside a name-based fuzzy search e.g: job names, role names in some of the pages of the application. An attacker can use illegal parameters for the search leading to SQL...

Deserialization Of Untrusted Data

org.apache.dubbo/dubbo is vulnerable to Deserialization Of Untrusted Data. The vulnerability is triggered when decoding malicious package data and is converted back from a serialized format into objects without sufficient validation or sanitization. This can potentially lead to the execution of...

Sensitive Information Disclosure

activeadmin is vulnerable to Sensitive Information Disclosure. The vulnerability is caused due to a concurrency issue wherein a malicious user is able to access private data of another user. The export data feature is affected, caused by a variable holding collection to be exported which is not...

Buffer Overflow

libjq.so is vulnerable to Buffer Overflow. The vulnerability is due to improper bounds checking in the decToString function in decNumber.c. This could lead to Denial Of Service Attack...

Path Traversal

mlflow is vulnerable to Path Traversal. The vulnerability is due to improper path validation or sanitization of uploaded files. This issue can be exploited by an attacker to delete arbitrary files on the filesystem, resulting in Denial of Service...

Remote Code Execution

org.apache.streampark, streampark is vulnerable to Remote Code Execution. The vulnerability is caused due to a missing check on the compilation parameters of maven used in a project module that is used to integrate Maven's compilation capability. This can lead to an attacker inserting remote...

Sensitive Information Disclosure

homeassistant is vulnerable to Sensitive Information Disclosure. The vulnerability arises due to the login page exposing user accounts to unauthenticated attackers on the LAN. An attacker is able to read application data as a result of exploitation of this vulnerability...

Cross Site Scripting (XSS)

thorsten/phpmyfaq is vulnerable to Cross Site Scripting XSS. The vulnerability is caused due to a lack of input sanitization in the renderSearchResult function within SearchHelper.php. This could allow an attacker to inject malicious scripts that lead to XSS attacks...

Information Disclosure

org.owasp/dependency-check is vulnerable to Information Disclosure. The vulnerability is due to the nvdApiKey not being masked because it doesn't match the specified patterns. As a result, when debug mode is enabled using mvn -X, the API key is logged in clear text. This exposes the NVD API key...

Cross Site Scripting (XSS)

com.jfinal:jfinal is vulnerable to Cross-site Scripting XSS. The vulnerability exists within the library's site management office which allows an attackers to inject malicious code into the site, potentially hijacking user sessions, stealing sensitive data, or manipulating displayed content...

Cross Site Scripting (XSS)

com.jfinal:jfinal is vulnerable to Cross-site Scripting XSS. The vulnerability occurs due to insufficient user input sanitizations, which allows an authenticated attacker to inject and execute malicious javascript into the victim's browser...

Arbitrary File Write

mindsdb is vulnerable to Arbitrary File Write. The vulnerability is due improper filename sanitization within file.py. This issue can be exploited by an attacker to write arbitrary files to the filesystem...

Insecure Deserialization

dubbo is vulnerable to Insecure Deserialization. The vulnerability is caused due to lack of validation of untrusted user data. An attacker can modify application data, perform a DoS attack or execute arbitrary code by exploiting this vulnerability...

Cross Site Scripting (XSS)

com.jfinal:jfinal is vulnerable to Cross-site Scripting XSS. Lack of proper validation for user input within the library's label management feature, exposes a Cross-Site Scripting XSS vulnerability which allows an authenticated attacker to inject malicious scripts into labels, which are then...

Open Redirect

Apache Shiro is vulnerable to Open Redirect. The vulnerability is due to improper sanitization and validation on URL redirection when form authentication is used. This issue can be exploited by an attacker to redirect user to untrusted sites...

Cross-Site Request Forgery (CSRF)

htmlresource is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability exists because the library does not require POST requests for an HTTP endpoint, which allows an attacker to delete arbitrary files on the Jenkins controller file system...

Buffer Overwrite

vyper is vulnerable to Buffer Overwrite. The vulnerability exists due to an incorrect calculation for storage slots containing large arrays which allows an attacker to overwrite storage variables exceeding the allocated space...

Privilege Escalation

umbracocms is vulnerable to Privilege Escalation. The vulnerability exists due to improper access control which allows an attacker with low privileged roles to perform unauthorized actions...

Denial Of Service (DOS)

Tar is vulnerable to Denial Of Service DOS. The vulnerability is caused due to a defect in a function xattrdecoder within xheader.c where sufficiently long xattr key may overflow a stack where alloca is used. An attacker can trick a user into processing a malicious archive, causing an application...

Improper Authentication

bluez is vulnerable to Improper authentication. The vulnerability due to permitting injection of HID messages when no user interaction has occurred in the Central role to authorize such access. It leads to allow an attacker get access to inject a malicious message...

Denial Of Service (DoS)

ckan is vulnerable to Denial of Service DoS. The vulnerability exists because it does not properly validate the auth cookie in init.py which allows an attacker to create an out-of-memory error in the hosting server...

Denial Of Service (DoS)

@cubejs-backend/api-gateway is vulnerable to Denial Of Service DoS. The vulnerability exists in gateway.ts allowing an attacker to cause an application crash by submitting a crafted query...

Integer Overflow

xwayland:sid is vulnerable to Integer Overflow. The vulnerability due to xorg-server crafted request to RRChangeProviderProperty or RRChangeOutputProperty. It leads to allow an attacker to a disclosure of sensitive information...

Remote Code Execution

xwayland:sid is vulnerable to Remote Code Execution. The vulnerability due to changing XKB button actions such as moving from a touch pad to a mouse can result in out-of-bounds memory reads and writes. It allows an attacker execute malicious code in cases where X11 forwarding is involved...

Code Injection

hono is vulnerable to Code Injection. The vulnerability is due to gHSets method lacking isolation in the handler set parameters for each request. An attacker can potentially exploit this by overriding named path parameters from previous requests, leading to unintended parameter usage in subsequen...

Improper Input Validation

libreoffice is vulnerable to Execution with Unnecessary Privileges. The vulnerability is due to there is no sanitization or escaping for the filename of an embedded video when it is passed to GStreamer. This flaw allows an attacker to execute arbitrary GStreamer plugins...

Improper Preservation Of Permissions

libreoffice is vulnerable to Improper Preservation of Permissions. The vulnerability is due to there is no macro permission validation for The Document Foundation in LibreOffice. This allows an attacker to execute built-in macros without warning the user...

Denial Of Service (DoS)

org.keycloak: keycloak-model-jpa is vulnerable to Denial of Service DoS. The vulnerability is due to a lack of input validation when handling a large number of offline client sessions in loadUserSessionsWithClientSessions method. This could lead to excessive memory and CPU consumption which could...

Cleartext Storage Of Sensitive Information

oic-auth is vulnerable to Cleartext Storage of Sensitive Information. The vulnerability is due to a password of a local user account stored in plain text. This password is used as an anti-lockout feature. An attacker with access to jenkins controller file system can recover this password and like...

Heap Buffer Overflow

chromium:sid is vulnerable to Heap buffer overflow. The vulnerability due to Type confusion can accessing a resource with an incompatible type, leading to logical errors and type-related issues.. It allow a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Buffer Overflow

chromium:sid is vulnerable to buffer overflow. The vulnerability due to to access a memory location after the memory has been freed or deallocated. It allow a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Use After Free

chromium is vulnerable to Use after free. The vulnerability is due to improper memory management in FedCM in Google Chrome. This allows a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page...

Use After Free

Chromium is vulnerable to Use After Free. The vulnerability is due to improper memory management in CSS component of Google Chrome. This allows a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Use After Free

Chromium is vulnerable to Use After Free. The vulnerability is caused because of a User After Free error in libavif component. A remote attacker can exploit Heap Corruption via a crafted image file...

Use After Free

Chromium is vulnerable to Use After Free. The vulnerability is caused due to Use After Free error in WebRTC component. A remote attacker can exploit a heap corruption via a crafted HTML page...

Remote Code Execution (RCE)

org.apache.struts: struts2-core is vulnerable to Remote Code Execution. The vulnerability is due to the HttpParameters class in HttpParameters.java failing to sanitize parameters with different cases. The remove , get and contains methods treat parameters with different character cases as unique...

Missing Permission Check

org.jenkins-ci.plugins:scriptler is vulnerable to a Missing Permission Check. The vulnerability is due to a missing permission check in a HTTP end point which allows attackers with Overall/Read permission to read the contents of a Groovy script by knowing its ID...

Buffer Overflow

libespeak-ng.so is vulnerable to Buffer Overflow. The vulnerability is caused by the ReadClause function in readclause.c due to not having a bounds check when writing data to buffer. This allows an attacker to craft an input to trigger the overflow, potentially leads to code execution or Denial o...

Heap-based Buffer Overflow

libjq.so is vulnerable to Heap-based Buffer Overflow. The vulnerability is caused by not allocating enough buffer when calling the decNumberToString function. decNumberToString calls for a buffer that can hold a string of digits+14 characters, not a buffer of size digits+14 one extra byte in the...

Improper Certificate Validation

jruby-openssl is vulnerable to Improper Certificate Validation. The vulnerability is due to incorrect hashing of certificate names in X509Name.java and insufficient checking of certificate path lengths in StoreContext.java. This allows an attacker to trick the client application into believing th...

Improper Privilege Management

sap-xssec is vulnerable to Improper Privilege Management. The vulnerability arises due to the lack of permission checks in the library. This allows an attacker to gain arbitrary permissions within the application under specific conditions, resulting in privilege escalation...

Stack-based Buffer Overflow

libjq.so is vulnerable to Stack-based Buffer Overflow. The vulnerability is caused by a defect in the jvpnumberisnan function where the unit allocated for the decNumberCompare function was accidentally removed by earlier commit. This leads to stack overflow when comparing a nan with a payload of...

Arbitrary Code Execution

directmailteam/direct-mail is vulnerable to Arbitrary Code Execution. The vulnerability is due to the Configuration backend module of the extension which allows an authenticated user to write arbitrary TSConfig for folders configured as Direct Mail. This issue can be exploited by an attacker by...

Denial Of Service (DoS)

dompdf/dompdf is vulnerable to Denial Of Service DoS. The vulnerability exists in Cache.php due to the lack of SVG reference recursion validation, which allows an attacker to cause an application crash by providing a maliciously crafted SVG image...

Insecure Direct Object Reference (IDOR)

t3s/content-consent is vulnerable to Insecure Direct Object Reference IDOR. The issue arises because the library fails to verify whether a specified content element identifier is permitted by the plugin. This allows an unauthenticated user to display various content elements, leading to an insecu...

Cross-Site Scripting (XSS)

github.com/arduino/arduino-create-agent is vulnerable to Cross-Site Scripting. The vulnerability is due to a lack of user input and custom error messages sanitization in the /certificate.crt endpoint. This allows attackers to execute Reflected Cross-Site Scripting XSS attacks through specially...

Broken Access Control

in2code/femanager is vulnerable to Broken Access Control. The vulnerability is due to the improper implementation of access control in the check edit user component. This issue can be exploited by an attacker as an authenticated user to either edit data of various frontend users or to delete...