Out-of-bounds Read

libopensc.so is vulnerable to out-of-bounds reads. The vulnerability exists in card-myeid.c because it does not properly validate symmetric keys, which allows an attacker to send maliciously crafted responses to the APDU and read information outside of the intended range...

Denial Of Service (DoS)

libjson-c.so is vulnerable to Denial Of Service DoS. The vulnerability exists when parsing crafted JSON data, resulting in excessive CPU utilization caused by a hash collision which allows an attacker to cause an application crash...

Denial Of Service (DoS)

libjson-c.so is vulnerable to Denial Of Service DoS. The vulnerability exists due to a buffer overflow because the sizet variable is not properly validated which allows an attacker to cause an application crash by entering a value that overflows the int type...

Integer Overflow

github.com/consensys/gnark is vulnerable to Integer Overflow. The vulnerability is due to some in-circuit values having two valid decomposition bits, which could result in unintended behavior...

Improper Authentication

asyncua is vulnerable to Improper Authentication. The vulnerability is due to a missing active session check, which lets an attacker access an Address Space without encryption and authentication allowing an attacker to steal sensitive data...

Improper Authorization

pretix is vulnerable to Improper Authorization. An attacker is able to exploit this vulnerability by sending a specially crafted HTTP request to a vulnerable pretix instance. This request could contain a malicious X-Forwarded-For header that spoofs the attacker's IP address. If the pretix instanc...

Path Traversal

static-server is vulnerable to Path Traversal. The vulnerability exists because the library does not properly validate file paths in server.js, allowing an attacker to access files outside the expected directory and read arbitrary files through the relative path such as \..\filename...

Regular Expression Denial Of Service (ReDoS)

zod is vulnerable to Denial of Service DoS. The vulnerability is due to an inefficient regex expression that parses email addresses. An attacker can submit long email addresses, which will cause the Zod application to crash or become unresponsive...

Insecure Session Cookie Handling

quarkus-oidc is vulnerable to Insecure OIDC Session Cookie Handling. The vulnerability exists because the library does not properly encrypt the OIDC session cookie value by default which leads to the leakage of both ID and access tokens in the authorization code flow when an insecure HTTP protoco...

Denial Of Service (DoS)

libgpac.so is vulnerable to Denial Of Service DoS. The vulnerability arises from an out-of-bound read in the chnlboxread function of boxcodebase.c. This occurs because the variable ptr-layout.channelscount can exceed the actual number of layouts in ptr-layout.layouts and surpass the maximum numbe...

Denial Of Service(DoS)

asyncua is vulnerable to Denial Of Service DoS. The vulnerability is due to datareceived function in binaryserverasyncio.py which lacks proper error handling for malformed headers. An attacker can keep sending incomplete or malformed packets without a proper header and that cause memory exhaustio...

Cross Site Scripting

HtmlSanitizer is vulnerable to Cross Site Scripting. The vulnerability is due to improper sanitization whensvg and math html tags are in the list of allowed elements. An attacker can exploit this vulnerability by injection malicious JavaScript using svg and math html tags...

Improper Access Control

femanager is vulnerable to Improper Access Control. The vulnerability is due to a lack of proper access control checks in the plugin, allowing a remote user to create frontend user accounts with unauthorized access to configured frontend groups...

Buffer Overflow

libopensc.so is vulnerable to Buffer Overflows. The vulnerability exists due to a lack of validation in smartcards in the library, which allows an attacker to send maliciously crafted responses to APDU commands through a malicious smartcard or USB devices, possibly resulting in an application cra...

Authentication Bypass

libopensc.so is vulnerable to Authentication Bypass. The vulnerability exists in the scpkcs15verifypin function of pkcs15-pin.c when a token or card is plugged into the system and authenticated by one process, but can be utilized for cryptographic operations by another process when an empty,...

Denial Of Service (DoS)

Apache Avro is vulnerable to Buffer Overflow. The vulnerability is due to improper handling of deserialization when processing untrusted or corrupted data. This can result in a reader consuming memory beyond the allowed constraints, potentially leading to an out-of-memory condition on the system...

Hard Coded Credentials

Microweber is vulnerable to the use of Hard Coded Credentials. The vulnerability is due to the hard coding of oauth access token values in the twitterfeedperformapirequest function in userfiles/modules/twitterfeed/functions.php which is required to access twitter API's. This may lead to sensitive...

Remote Code Execution (RCE)

Composer is vulnerable to Remote Code Execution. This vulnerability is due when the composer.phar file is published to a publicly-accessible server and registerargcargv is enabled in php.ini. This can allow an attacker to execute remote code in the server...

Regular Expression Denial Of Service (ReDoS)

get-func-name is vulnerable to Regular Expression Denial Of Service. The vulnerability is due to the getFuncName function in index.js not properly checking the functionSource size and length. which allows an attacker to trigger a DOS attack by using an input like '\t'.repeat54773 + '\t/function/i...

Untrusted Search Path

python is vulnerable to Untrusted Search Path. The vulnerability is due to the Pynormpath function which cannot process paths with embedded null characters without truncating the path. If a path containing the \0 byte is passed to os.path.normpath, the path will be truncated unexpectedly at the...

Path Traversal

github.com/argoproj/argo-cd/v2 is vulnerable to Path Traversal. The vulnerability is caused by a missing validation check in the repo server API that prevents file traversal attacks. This can lead to an attacker leaking values or files from the referenced Helm Chart by using a using a...

Denial Of Service (DOS)

io.undertow: undertow-servlet is vulnerable to Denial Of Service DOS. The vulnerability is caused by excessive memory consumption due to large multipart content upload handling resulting in OutOfMemoryError while processing @MultipartConfig annotated servlets. This can allow unauthorized users to...

Arbitrary Code Injection

pretix is vulnerable to Arbitrary Code Injection. The vulnerability is caused by allowing parsing of EPS Encapsulated PostScript files in various features of the application. An attacker can exploit this to execute arbitrary code by sending a specially crafted EPS file...

Cross-Site Scripting (XSS)

thorsten/phpmyfaq is vulnerable to Cross Site Scripting. The vulnerability is due to a lack of url sanitization in instances.php which allow an attacker to pass a malicious URL...

Improper Privilege Management

prestashop/prestashop is vulnerable to Improper Privilege Management. The vulnerability is caused by a missing authorization/access rights check in the ajaxProcessGetPossibleHookingListForModule method while returning the possible hooks for a module. This can lead to an attacker listing all modul...

Cross Site Scripting (XSS)

github.com/golang/go is vulnerable to Cross Site Scripting XSS. The vulnerability is caused by a lack of proper handling of occurrences of context. This will make the template parser incorrectly conclude the script context resulting in XSS...

Unrestricted File Upload

thorsten/phpmyfaq is vulnerable to Unrestricted File Upload. The vulnerability is due to the system allowing the upload of arbitrary files without validating the MIME type. An attacker can exploit this issue by uploading malicious files to the server, potentially leading to remote code execution...

Cross-Site Scripting (XSS)

github.com/golang/go is vulnerable to Cross-site Scripting XSS. The vulnerability is due improper handling of "" comment tokens, hashbang "!" comment tokens, in...

Cross Site Scripting

thorsten/phpmyfaq is vulnerable to Cross Site Scripting. The vulnerability is due to improper sanitization of data. This can be exploited by an attacker to inject malicious JavaScript into the web application...

Improper Privilege Management

prestashop/prestashop is vulnerable to Improper Privilege Management. The vulnerability is caused by a missing validation check while disabling or removing modules in the application. This can lead to an attacker disabling or uninstalling any modules from the back office, even with minimal...

Denial Of Service (DoS)

nodebb is vulnerable to Denial Of Service. The vulnerability is due to the onMessage function in index.js as there is no validation when passing messages to the eventName.startsWith or eventName.toString methods, which can result in an application crash when the message contains an array or objec...

Server Side Request Forgery (SSRF)

torchserve is vulnerable to Server Side Request Forgery SSRF. The vulnerability is caused by a missing input validation check in the default configuration for the property value of allowedurls, which is used to restrict URLs used to load the PyTorch model in the application. This can lead to an...

Cross-Site Scripting (XSS)

The html/template package is vulnerable to Cross-Site Scripting XSS attacks. The vulnerability exists due to improper output escaping which allows an attacker to inject and execute arbitrary javascript...

Cross-Site Scripting (XSS)

html/template is vulnerable to Cross-Site Scripting XSS attacks. The vulnerability exists because the package does not properly handle HTML-like "" comment tokens, nor hashbang "!" comment tokens, in...

Denial Of Service (DoS)

go is vulnerable to Denial Of Service DoS. The vulnerability exists due to missing rate-limits which allows an attacker to consume resources which results in an application crash...

Code Injection

edge is vulnerable to Code Injection. The vulnerability exists because the library does not properly validate user inputs script allowing an attacker to inject and execute malicious code...

Insufficient Information

edge is vulnerable to insufficient Information.The vulnerability exists due to Insufficient policy enforcement in devetool . which allows to remote attacker to bypass navigation restrictions via a crafted HTML page...

Denial Of Service (DoS)

libcurl is vulnerable to Denial Of Service DoS. The vulnerability exists due to missing rate-limits which allows an attacker to consume resources via mismatched type of a headers API which results in an application crash...

Information Disclosure

xrdp is vulnerable to Information Disclosure. The vulnerability exists due to the lack of boundary checks in the xrdppainter.c file leading to out-of-bounds read errors, which could allow an attacker to gain access to sensitive information...

Improper Encoding

firefox is vulnerable to Improper Encoding. The vulnerability exists due to improperly validating curl command which allows an attacker to cause unintended behavior in smart contracts that rely on the sender's accurate identification...

Buffer Overflow

Xen is vulnerable to Buffer Overflow. This vulnerability is due to the lack of validation of user-input requests, which allows an attacker to cause an application crash...

Privilege Escalation

xen is vulnerable to Privilege Escalation. This vulnerability exists due to a flaw in the shadow mode implementation which can be used to bypass the policy mechanisms allowing an attacker to exploit this vulnerability to gain elevated privileges...

Remote Code Execution (RCE)

.NET is vulnerable to Remote Code Execution RCE. The vulnerability exists in Microsoft.DiaSymReader.Native.amd64.dll when processing a corrupted PDB file, potentially leading to remote code execution...

Remote Code Execution (RCE)

.NET is vulnerable to Remote Code Execution RCE. The vulnerability exists in Microsoft.DiaSymReader.Native.amd64.dll when processing a corrupted PDB file, potentially leading to remote code execution...

Code Injection

firefox-esr is vulnerable to Code Injection. This vulnerability arises from the use of newline characters in filenames, which could bypass file extension security mechanisms that replace malicious extensions e.g., .lnk with .download. This allows an attacker to inject and execute malicious code...

Path Traversal

firefox-esr is vulnerable to Path Traversal. The vulnerability arises when choosing 'Save Link As,' and suggested filenames containing environment variable names are resolved within the context of the current user. This can lead to unauthorized access to files and directories outside of the...

Denial Of Service (DoS)

firefox-esr is vulnerable to Denial Of Service DoS. The vulnerability arises from out-of-bounds memory access via WebGL APIs, resulting in memory corruption and a potentially exploitable crash. This bug only affects Firefox and Thunderbird for macOS...

SMB Relaying Attack

firefox-esr is vulnerable to SMB Relaying Attack. A local attacker can deceive the Mozilla Maintenance Service into applying an unsigned update file by directing the service to an update file hosted on a malicious SMB server. This manipulation is possible because the service's requested write-loc...

Improper Input Validation

openjdk is vulnerable to Improper input validation. An unauthenticated attacker with network access can perform unauthorized updates, inserts, or deletions on the system using multiple protocols...

Information Disclosure

openjdk8 is vulnerable to Information Disclosure. An attacker can access the vulnerable library through the multiple network and gain read access to the subset of Oracle Java SE, Oracle GraalVM Enterprise Edition and Oracle GraalVM...