Vuldb Updates

A vulnerability categorized as problematic has been discovered in Jfinal CMS 5.1. This affects an unknown part of the file /system/dict/list. Such manipulation leads to cross site scripting. This vulnerability is listed as CVE-2023-24747. The attack may be performed from remote. There is no available exploit.

A vulnerability was found in Microsoft IIS 2.0/3.0/4.0. It has been rated as critical. This affects the function GetExtensionVersion of the component ISAPI. Performing manipulation results in improper privilege management. This vulnerability is identified as CVE-1999-0412. The attack can be initiated remotely. Additionally, an exploit exists. Upgrading the affected component is advised.

A vulnerability marked as critical has been reported in Webcom CGI Guestbook. Affected is an unknown function of the file wguest.exe/rguest.exe. The manipulation of the argument template leads to improper privilege management. This vulnerability is referenced as CVE-1999-0467. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability, which was classified as problematic, was found in Microsoft IIS 2.0/3.0/4.0/5.0. Affected is an unknown function of the file perl.exe of the component IISAPI Extension. Executing manipulation can lead to information disclosure. The identification of this vulnerability is CVE-1999-0450. The attack may be launched remotely. Furthermore, there is an exploit available. You should upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Microsoft IIS 4.0. Affected by this issue is some unknown functionality of the component Log Handler. This manipulation as part of Long URL causes improper privilege management. This vulnerability appears as CVE-1999-0448. The attack may be initiated remotely. In addition, an exploit is available. This vulnerability is considered historic because of its background and reception. It is advisable to upgrade the affected component.

A vulnerability classified as critical has been found in Sun Solaris 2.3/2.4/2.5.1/2.6. Affected by this vulnerability is an unknown functionality of the component rpc.statd. Performing manipulation as part of RPC Call results in improper privilege management. This vulnerability is known as CVE-1999-0493. Remote exploitation of the attack is possible. Furthermore, an exploit is available. It is recommended to upgrade the affected component.

A vulnerability was found in Host. It has been rated as critical. The impacted element is an unknown function of the component FTP Server. This manipulation causes improper authentication (Anonymous). The identification of this vulnerability is CVE-1999-0497. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. This vulnerability has a historic impact because of its background and how it was received. It is advisable to modify the configuration settings.

A vulnerability, which was classified as critical, was found in Microsoft Windows NT 4.0/2000. This issue affects some unknown processing of the component IP Forwarding Handler. Such manipulation leads to improper privilege management. This vulnerability is referenced as CVE-1999-0511. It is possible to launch the attack remotely. No exploit is available. You should upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel 2.0/2.1. The impacted element is an unknown function of the component ICMP Handler. Such manipulation leads to denial of service (Smurf). This vulnerability is traded as CVE-1999-0513. The attack may be launched remotely. Furthermore, there is an exploit available. This vulnerability is notable in history due to its background and the response it received. Upgrading the affected component is recommended.

A vulnerability was found in Microsoft Windows 95/NT 4.0/2000. It has been classified as critical. The impacted element is an unknown function of the component NetBIOS/SMB Share. The manipulation leads to improper authentication. This vulnerability is listed as CVE-1999-0519. The attack may be initiated remotely. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability labeled as critical has been found in Host. Affected is an unknown function of the component NetBIOS/SMB Share. Executing manipulation can lead to improper privilege management. This vulnerability is tracked as CVE-1999-0520. The attack can be launched remotely. Moreover, an exploit is present. This vulnerability is historically impactful due to its background and the reception it garnered. Configuration settings should be changed.

A vulnerability was found in NIS. It has been declared as problematic. This affects an unknown function of the component Domain Name Handler. The manipulation results in improper privilege management. This vulnerability is cataloged as CVE-1999-0521. The attack must be initiated from a local position. There is no exploit available. Changing the configuration settings is recommended.

A vulnerability was found in SourceCodester Simple Customer Relationship Management System 1.0. It has been classified as critical. Affected is an unknown function of the component User Profile Update Handler. This manipulation of the argument Query causes sql injection. This vulnerability appears as CVE-2023-24731. The attack may be initiated remotely. There is no available exploit.

A vulnerability was found in SourceCodester Simple Customer Relationship Management System 1.0 and classified as critical. This impacts an unknown function of the component User Profile Update Handler. The manipulation of the argument company results in sql injection. This vulnerability is reported as CVE-2023-24730. The attack can be launched remotely. No exploit exists.

A vulnerability was found in SourceCodester Simple Customer Relationship Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component User Profile Update Handler. Such manipulation of the argument gender leads to sql injection. This vulnerability is traded as CVE-2023-24732. The attack may be launched remotely. There is no exploit available.

A vulnerability marked as problematic has been reported in Rediker AdminPlus 6.1.91.00. Affected by this issue is the function onload. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2023-24744. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability has been found in SourceCodester Simple Customer Relationship Management System 1.0 and classified as critical. This affects an unknown function of the component User Profile Update Handler. The manipulation of the argument address leads to sql injection. This vulnerability is documented as CVE-2023-24729. The attack can be initiated remotely. There is not any exploit available.

A vulnerability categorized as problematic has been discovered in NoMachine up to 5.3.26. This affects an unknown part in the library wintab32.dll. Such manipulation leads to untrusted search path. This vulnerability is documented as CVE-2018-17980. The attack needs to be performed locally. Additionally, an exploit exists. It is advisable to upgrade the affected component.

A vulnerability was found in Microsoft Edge. It has been rated as critical. This affects an unknown function of the component AppContainer Sandbox. Performing manipulation results in improper access controls. This vulnerability is cataloged as CVE-2018-8463. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in MiniShare up to 1.4.1 and classified as critical. Affected by this vulnerability is an unknown functionality. Such manipulation as part of HTTP HEAD Request leads to memory corruption. This vulnerability is listed as CVE-2018-19861. The attack may be performed from remote. In addition, an exploit is available. It is suggested to use an alternative component instead of the affected one.