Buffer Overflow

GPAC is vulnerable to Buffer Overflow. The vulnerability is due to the gfvvcreadppsbsinternal function of mediatools/avparsers.c which allows an attacker to cause an application crash...

Code Injection

gnome-maps is vulnerable to Code Injection. The vulnerability is due to incomplete JavaScript sanitization, which allows an attacker to Inject code through a service.json file...

Information Disclosure

Mattermost is vulnerable to Information Disclosure. The vulnerability is due to a flaw that allows an attacker to request a preview of an existing message while creating a new message using the createPost API call. The attacker can exploit this vulnerability to disclose contents of the linked...

Heap Buffer Overflow

libwebp.so is vulnerable to Out Of Bounds Memory Write. The vulnerability is due to the BuildHuffmanTable function in src/dec/vp8ldec.c improperly allocating memory to the table when parsing a stream, which results in an application crash or Arbitrary Code Execution when reading a crafted webp...

Information Disclosure

Strapi is vulnerable to Sensitive Information Disclosure. This vulnerability is due to the /content-manager/relations route which does not mask private fields. An attacker can exploit this vulnerability to disclose sensitive information such as password tokens, user information etc...

Incorrect Authorization

apacheairflow is vulnerable to Incorrect Authorization. The vulnerability is caused by a missing read only validation rule for all the fields e.g: startdate, enddate, runid ,dagid, state except note field while editing/modifying DAG Directed Acyclic Graph run detail values. This can lead to...

Improper Rate Limiting

@strapi/admin and @strapi/plugin-users-permissions vulnerable to Improper Rate Limiting. The vulnerability is due to bypassable rate limiting logic in the admin and user authentication endpoints which could theoretically allow an attacker to brute force valid username and password combinations...

Arbitrary Code Execution

ConEmu is vulnerable to Arbitrary Code Execution. The vulnerability is due improperly sanitizing the control characters in the title responses. The attacker can exploit this vulnerability by injecting control characters leading to code execution...

Improper Authorization

@strapi/plugin-content-manager is vulnerable to Improper Authorization. The vulnerability is due to Field level permissions not being respected in the relationship title, as there are no RBAC permission checks to read the field in relations.js...

Remote Code Execution

.NET is vulnerable to Remote Code Execution RCE. The vulnerability exists in Microsoft.DiaSymReader.Native.amd64.dll when reading a corrupted PDB file which may lead to RCE...

Use After Free

libgpac.so is vulnerable to Use After Free. The vulnerability is caused by a defect in a function gfbifsflushcommandlist in file src/bifs/memorydecoder.c. This can lead to application crash resulting in Denial Of Service DOS...

Plaintext Storage Of User Password

Keycloak Services is vulnerable to Plaintext Storage Of User Password. When a user registers itself through registration flow, the "password" and "password-confirm" field from the form will occur as regular user attributes. All users and clients with proper rights and roles are able to read users...

Denial Of Service

Microsoft.NETCore.App.Runtime is vulnerable to Denial of Service. The vulnerability is due to reading a maliciously crafted X.509 certificate which may result in Denial of Service. This issue only affects Linux systems...

Remote Code Execution

Microsoft .NET 7.0 and .NET 6.0 are vulnerable to Remote Code Execution RCE. The vulnerability exists in Microsoft.DiaSymReader.Native.amd64.dll when reading a corrupted PDB file which may lead to RCE...

Remote Code Execution

org.openrefine, database is vulnerable to Remote Code Execution RCE. The vulnerability is caused by not validating or sanitizing/escaping the JDBC connection url used while importing data from RDBMS. This can cause an unauthenticated attacker to run arbritrary code on the openfire server by using...

Arbitrary File Read

OpenRefine is vulnerable to Arbitrary File Read. The vulnerability due to improper jdbc url sanitization, which allows an attacker to set the allowLoadLocalInfile value to true by passing it through the databaseName parameter. This can be exploited to read sensitive internal server files...

Buffer Overflow

hutool is vulnerable to a Buffer Overflow. The vulnerability is due to a lack of array boundary checks in the jsonObject.putByPath function which can be exploited by an attacker to cause Denial of Service...

Buffer Overflow

cn.hutool, hutool-json is vulnerable to Buffer Overflow. The vulnerability is caused by missing validation for JSON input passed to the JSONUtil.parse method. An attacker can cause a heap buffer overflow by sending a specially crafted JSON string leading to an application crash or unexpected...

Rate Limit Bypass

Azuracast is vulnerable to Rate Limit Bypass. The vulnerability arises because the existing rate limiting functionality trusts the arbitrary user input coming from the X-Forwarded-For and Client IP header. The vulnerability could allow an attacker to brute force a user password...

Memory Leak

libyajl.so is vulnerable to a Memory Leak. The vulnerability is due to the yajltreeparse function in yajltree.c which allows a remote attacker to parse malicious JSON input to cause an out-of-memory error and crash...

Missing Authorization Checks

matrixsynapse is vulnerable to Improper Authentication. The vulnerability is due to the completelogin function as It fails to verify the deactivated status of users during login. This only applies if any of the following are true: 1. JSON Web Tokens are enabled for login via the jwtconfig.enabled...

Cross Site Scripting (XSS)

matrix-media-repo is vulnerable to a Cross Site Scripting XSS. The vulnerability is due to a lack of content-type validation, which allows an attacker to upload a SVG image containing JavaScript leading to the execution of JavaScript in the user’s browser...

Improper Input Validation

ux-autocomplete is vulnerable to Improper Input Validation. The vulnerability is due to a missing validation check while submitting an entry id for an EntityType when selecting an entry in the Autocomplete UI component. This causes an entity id for an EntityType that is not part of the valid...

Path Traversal

Hexo is vulnerable to a Path Traversal attack .The vulnerability is due to a flaw in the file read functionality and allows an attacker to exploit this vulnerability by manipulating the file path input thus leading to arbitrary file read...

Arbitrary File Upload

Cockpit CMS is vulnerable to Arbitrary File Upload. The vulnerability is caused by missing validation/sanitization of the request data contained in the POST request body sent to the /assets/upload endpoint while uploading .shtml files. This can lead to arbitrary code execution...

Buffer Overflow

hutool is vulnerable to Buffer Overflow. The vulnerability is due to a lack of input validation in the jsonArray.add function. This can be exploited by an attacker who sends a specially crafted JSON object to trigger an OutOfMemoryError, potentially causing a crash or denial of service...

Use Of Insufficiently Random Values

Magento LTS is vulnerable to Use of Insufficiently Random Values. The vulnerability is caused by not generating sufficient length protectcode value as part of guest order cookie - guest-view and not implementing a rate limiting in the end point e.g: /magento19/index.php/default/sales/guest/view/...

OS Command Injection

cacti is vulnerable to OS Command Injection. The vulnerability exists in the snmp.php due to lack of parameter checks which allows an attacker to inject and execute arbitrary commands...

Cross-site Scripting

Cacti is vulnerable to Cross-Site Scripting. This vulnerability exists in 'graphsnew.php' because user input is not properly validated, which allows an attacker to inject arbitrary code into the system...

SQL Injection

cacti is vulnerable to SQL Injection attacks. This vulnerability allows an unauthenticated attacker to execute arbitrary code on a vulnerable Cacti server by sending a specially crafted HTTP request...

Cross-site Scripting (XSS)

cacti is vulnerable to Cross-site Scripting XSS. This vulnerability allows an authenticated attacker to inject malicious JavaScript code into the Cacti web application, which can then be executed by other authenticated users...

Open Redirect

cacti is vulnerable to Open Redirect. An attacker could exploit this vulnerability by tricking a user into performing a password change via a malicious phishing link. Once the user clicks on the phishing link and changes their password, they will be redirected to a malicious website where the...

SQL Injection

cacti is vulnerable to SQL Injection attacks. An attacker could exploit this vulnerability by sending a specially crafted SQL injection payload to a vulnerable Cacti server. This payload could allow the attacker to escalate their privileges to the root user or execute arbitrary code on the server...

SQL Injection

cacti is vulnerable to SQL Injection attacks. An attacker could exploit this vulnerability by sending a specially crafted SQL injection payload to a vulnerable Cacti server. This payload could allow the attacker to escalate their privileges to the root user or execute arbitrary code on the server...

SQL Injection

cacti is vulnerable to SQL Injection attacks. An attacker could exploit this vulnerability by sending a specially crafted SQL injection payload to a vulnerable Cacti server. This payload could allow the attacker to escalate their privileges to the root user or execute arbitrary code on the server...

SQL Injection

cacti is vulnerable to SQL Injection attacks. An attacker could exploit this vulnerability by sending a specially crafted SQL injection payload to a vulnerable Cacti server. This payload could allow the attacker to escalate their privileges to the root user or execute arbitrary code on the server...

Improper Authorization

cacti is vulnerable to Improper Authorization. This vulnerability allows an attacker to execute arbitrary code on a vulnerable Cacti server by sending a specially crafted HTTP request...

Denial Of Service (DoS)

tcpreplay is vulnerable to Denial Of Service DoS. The vulnerability exists in the readhexstring function of utils.c, which allows an attacker to cause an application crash by providing a maliciously crafted input...

Denial Of Service (DoS)

tcpreplay is vulnerable to Denial Of Service DoS. The vulnerability exists in the tcpeditdltcleanup function of dltplugins.c, which allows an attacker to cause an application crash by providing a maliciously crafted input...

Denial Of Service (DoS)

tcpreplay is vulnerable to Denial Of Service DoS. The vulnerability exists in the macinstring function of the library, which allows an attacker to cause an application crash through the maliciously crafted input...

Denial Of Service (DoS)

tcpreplay is vulnerable to Denial Of Service DoS. The vulnerability exists in the parse endpoint function of the library, which allows an attacker to cause an application by providing a maliciously crafted input...

Denial Of Service (DoS)

tcpreplay is vulnerable to Denial Of Service DoS. The vulnerability exists in the ports2PORT function of portmap.c, which allows an attacker to cause an application crash by providing a maliciously crafted input...

Denial Of Service (DoS)

tcpreplay is vulnerable to Denial Of Service DoS. The vulnerability exists in the parselist function of list.c, which allows an attacker to cause an application crash by providing a maliciously crafted input...

Denial Of Service (DoS)

tcpreplay is vulnerable to Denial Of Service DoS. The vulnerability exists in the cidr2cidr function of cidr.c, which allows an attacker to cause an application crash by providing a maliciously crafted input...

Cross-site Scripting (XSS)

cacti is vulnerable to Cross-site Scripting XSS. This vulnerability allows an authenticated attacker to inject malicious JavaScript code into the Cacti web application, which can then be executed by other authenticated users...

Cross-site Scripting (XSS)

cacti is vulnerable to Cross-site Scripting XSS. This vulnerability allows an authenticated attacker to inject malicious JavaScript code into the Cacti web application, which can then be executed by other authenticated users...

Cross-site Scripting (XSS)

cacti is vulnerable to Cross-site Scripting XSS. This vulnerability allows an authenticated attacker to inject malicious JavaScript code into the Cacti web application, which can then be executed by other authenticated users...

Cross-site Scripting (XSS)

cacti is vulnerable to Cross-site Scripting XSS. This vulnerability allows an authenticated attacker to inject malicious JavaScript code into the Cacti web application, which can then be executed by other authenticated users...

Cross-site Scripting (XSS)

cacti is vulnerable to Cross-site Scripting XSS. This vulnerability allows an authenticated attacker to inject malicious JavaScript code into the Cacti web application, which can then be executed by other authenticated users...

Cross-site Scripting (XSS)

cacti is vulnerable to Cross-site Scripting XSS. This vulnerability allows an authenticated attacker to inject malicious JavaScript code into the Cacti web application, which can then be executed by other authenticated users...