Количество 314 458
Количество 314 458
GHSA-3wqr-pcvr-hx5r
Sander Bos discovered Apport's lock file was in a world-writable director which allowed all users to prevent crash handling.
GHSA-3wqr-6335-7cpw
The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service (persistent temporary CPU consumption) via a large number of characters in a submitted form.
GHSA-3wqp-rm5v-58pr
Multiple SQL injection vulnerabilities in phpCommunity 2 2.1.8, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the forum_id parameter in a forum action to index.php, (2) the topic_id parameter in a forum action to index.php, (3) the wert parameter in an id search action to index.php, (4) the wert parameter in a nick search action to index.php, or (5) the wert parameter in a forum search action to index.php, related to class_forum.php and class_search.php.
GHSA-3wqp-fp8q-5rmq
Use after free issue in HIDL while using callback to post event in Rx thread when internal mutex is not acquired and meantime close is triggered and callback instance is deleted in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
GHSA-3wqp-984m-6g29
File Upload vulnerability in Openupload Stable v.0.4.3 allows a remote attacker to execute arbitrary code via the action parameter of the compress-inc.php file.
GHSA-3wqm-ppwr-mjfv
An SQL Injection vulnerability in web component of EPMM before 12.1.0.0 allows an authenticated user with appropriate privilege to access or modify data in the underlying database.
GHSA-3wqh-x63v-54mj
XnView Classic for Windows Version 2.40 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpLowFragHeapFree+0x000000000000001f."
GHSA-3wqh-h42r-x8fq
Denial of Service in @hapi/content
GHSA-3wqh-cc4x-r6p5
The PDF Flipbook, 3D Flipbook—DearFlip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via outline settings in all versions up to 2.3.52 due to insufficient input sanitization and output escaping on user-supplied data. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
GHSA-3wqh-9cfw-65c4
Cross-site request forgery attacks can be carried out against the Eyes of Network web application, due to an absence of adequate protections. An attacker can, for instance, delete the admin user by directing an authenticated user to the URL https://<target-address>/module/admin_user/index.php?DataTables_Table_0_length=10&user_selected%5B%5D=1&user_mgt_list=delete_user&action=submit by means of a crafted link.
GHSA-3wqg-6hfx-9w42
Tenda N300 F3 router vulnerability allows users to bypass intended security policy and create weak passwords.
GHSA-3wqf-jxw5-8w54
An issue was discovered in QSC Q-SYS Core Manager 8.2.1. By utilizing the TFTP service running on UDP port 69, a remote attacker can perform a directory traversal and obtain operating system files via a TFTP GET request, as demonstrated by reading /etc/passwd or /proc/version.
GHSA-3wqf-4x89-9g79
Bootstrap vulnerable to Cross-Site Scripting (XSS)
GHSA-3wqf-38hq-5vr8
The FancyTabs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title’ parameter in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
GHSA-3wqc-xr7q-qr6w
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in HK WP Online Users Stats allows Blind SQL Injection. This issue affects WP Online Users Stats: from n/a through 1.0.0.
GHSA-3wqc-mwfx-672p
Traefik affected by Go oauth2/jws Improper Validation of Syntactic Correctness of Input vulnerability
GHSA-3wq9-hv2f-46q4
An exploitable heap based buffer overflow vulnerability exists in the 'read_biff_next_record function' of FreeXL 1.0.3. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability.
GHSA-3wq8-wfw2-w4xm
The replace_map_fd_with_map_ptr function in kernel/bpf/verifier.c in the Linux kernel before 4.5.5 does not properly maintain an fd data structure, which allows local users to gain privileges or cause a denial of service (use-after-free) via crafted BPF instructions that reference an incorrect file descriptor.
GHSA-3wq8-22r5-x325
cPanel before 71.9980.37 does not enforce the Mime::list_hotlinks API feature restriction (SEC-432).
GHSA-3wq7-w8r7-pmvh
Clipboard code failed to check the index on an array access. This could have lead to an out-of-bounds read. This vulnerability affects Firefox < 128.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
GHSA-3wqr-pcvr-hx5r Sander Bos discovered Apport's lock file was in a world-writable director which allowed all users to prevent crash handling. | 0% Низкий | больше 3 лет назад | ||
GHSA-3wqr-6335-7cpw The form autocomplete feature in Mozilla Firefox 1.5.x before 1.5.0.12, 2.x before 2.0.0.4, and possibly earlier versions, allows remote attackers to cause a denial of service (persistent temporary CPU consumption) via a large number of characters in a submitted form. | 16% Средний | почти 4 года назад | ||
GHSA-3wqp-rm5v-58pr Multiple SQL injection vulnerabilities in phpCommunity 2 2.1.8, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the forum_id parameter in a forum action to index.php, (2) the topic_id parameter in a forum action to index.php, (3) the wert parameter in an id search action to index.php, (4) the wert parameter in a nick search action to index.php, or (5) the wert parameter in a forum search action to index.php, related to class_forum.php and class_search.php. | 0% Низкий | почти 4 года назад | ||
GHSA-3wqp-fp8q-5rmq Use after free issue in HIDL while using callback to post event in Rx thread when internal mutex is not acquired and meantime close is triggered and callback instance is deleted in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables | 0% Низкий | больше 3 лет назад | ||
GHSA-3wqp-984m-6g29 File Upload vulnerability in Openupload Stable v.0.4.3 allows a remote attacker to execute arbitrary code via the action parameter of the compress-inc.php file. | CVSS3: 8.8 | 25% Средний | больше 2 лет назад | |
GHSA-3wqm-ppwr-mjfv An SQL Injection vulnerability in web component of EPMM before 12.1.0.0 allows an authenticated user with appropriate privilege to access or modify data in the underlying database. | CVSS3: 6.7 | 1% Низкий | больше 1 года назад | |
GHSA-3wqh-x63v-54mj XnView Classic for Windows Version 2.40 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpLowFragHeapFree+0x000000000000001f." | CVSS3: 7.8 | 0% Низкий | больше 3 лет назад | |
GHSA-3wqh-h42r-x8fq Denial of Service in @hapi/content | больше 5 лет назад | |||
GHSA-3wqh-cc4x-r6p5 The PDF Flipbook, 3D Flipbook—DearFlip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via outline settings in all versions up to 2.3.52 due to insufficient input sanitization and output escaping on user-supplied data. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. | CVSS3: 6.4 | 0% Низкий | около 1 года назад | |
GHSA-3wqh-9cfw-65c4 Cross-site request forgery attacks can be carried out against the Eyes of Network web application, due to an absence of adequate protections. An attacker can, for instance, delete the admin user by directing an authenticated user to the URL https://<target-address>/module/admin_user/index.php?DataTables_Table_0_length=10&user_selected%5B%5D=1&user_mgt_list=delete_user&action=submit by means of a crafted link. | CVSS3: 8.8 | 0% Низкий | больше 3 лет назад | |
GHSA-3wqg-6hfx-9w42 Tenda N300 F3 router vulnerability allows users to bypass intended security policy and create weak passwords. | CVSS3: 9.1 | 0% Низкий | почти 2 года назад | |
GHSA-3wqf-jxw5-8w54 An issue was discovered in QSC Q-SYS Core Manager 8.2.1. By utilizing the TFTP service running on UDP port 69, a remote attacker can perform a directory traversal and obtain operating system files via a TFTP GET request, as demonstrated by reading /etc/passwd or /proc/version. | 3% Низкий | больше 3 лет назад | ||
GHSA-3wqf-4x89-9g79 Bootstrap vulnerable to Cross-Site Scripting (XSS) | CVSS3: 6.1 | 2% Низкий | больше 3 лет назад | |
GHSA-3wqf-38hq-5vr8 The FancyTabs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title’ parameter in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. | CVSS3: 6.4 | 0% Низкий | 4 месяца назад | |
GHSA-3wqc-xr7q-qr6w Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in HK WP Online Users Stats allows Blind SQL Injection. This issue affects WP Online Users Stats: from n/a through 1.0.0. | CVSS3: 9.3 | 0% Низкий | 10 месяцев назад | |
GHSA-3wqc-mwfx-672p Traefik affected by Go oauth2/jws Improper Validation of Syntactic Correctness of Input vulnerability | CVSS3: 7.5 | 10 месяцев назад | ||
GHSA-3wq9-hv2f-46q4 An exploitable heap based buffer overflow vulnerability exists in the 'read_biff_next_record function' of FreeXL 1.0.3. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability. | CVSS3: 8.8 | 2% Низкий | больше 3 лет назад | |
GHSA-3wq8-wfw2-w4xm The replace_map_fd_with_map_ptr function in kernel/bpf/verifier.c in the Linux kernel before 4.5.5 does not properly maintain an fd data structure, which allows local users to gain privileges or cause a denial of service (use-after-free) via crafted BPF instructions that reference an incorrect file descriptor. | CVSS3: 7.8 | 19% Средний | больше 3 лет назад | |
GHSA-3wq8-22r5-x325 cPanel before 71.9980.37 does not enforce the Mime::list_hotlinks API feature restriction (SEC-432). | 0% Низкий | больше 3 лет назад | ||
GHSA-3wq7-w8r7-pmvh Clipboard code failed to check the index on an array access. This could have lead to an out-of-bounds read. This vulnerability affects Firefox < 128. | CVSS3: 9.8 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу