Submit #457864: SourceCodester Phone Contact Manager System V1.0 Buffer Pollution [Accepted]
Submit #457864 / VDB-287275
Aggregator
Submit #457477: SourceCodester Phone Contact Manager System V1.0 Improper Input Validation [Accepted]
9 months 1 week ago
Submit #457477 / VDB-287274
Jason huibin wong
Submit #457438: SourceCodester Phone Contact Manager System in C++ with Source Code V1.0 Buffer Pollution [Accepted]
9 months 1 week ago
Submit #457438 / VDB-287273
Jason huibin wong
CVE-2024-12352 | TOTOLINK EX1800T 9.1.0cu.2112_B20220316 /cgi-bin/cstecgi.cgi sub_40662C ssid stack-based overflow
9 months 1 week ago
A vulnerability classified as problematic was found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316. This vulnerability affects the function sub_40662C of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ssid leads to stack-based buffer overflow.
This vulnerability was named CVE-2024-12352. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2024-12351 | JFinalCMS 1.0 File Content ContentModel.java findPage name sql injection
9 months 1 week ago
A vulnerability classified as critical has been found in JFinalCMS 1.0. This affects the function findPage of the file src\main\java\com\cms\entity\ContentModel.java of the component File Content Handler. The manipulation of the argument name leads to sql injection.
This vulnerability is uniquely identified as CVE-2024-12351. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-12350 | JFinalCMS 1.0 Template TemplateController.java update content command injection
9 months 1 week ago
A vulnerability was found in JFinalCMS 1.0. It has been rated as critical. Affected by this issue is the function update of the file \src\main\java\com\cms\controller\admin\TemplateController.java of the component Template Handler. The manipulation of the argument content leads to command injection.
This vulnerability is handled as CVE-2024-12350. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2024-12349 | JFinalCMS 1.0 /admin/tag/save cross-site request forgery
9 months 1 week ago
A vulnerability was found in JFinalCMS 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/tag/save. The manipulation leads to cross-site request forgery.
This vulnerability is known as CVE-2024-12349. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Br34cHM45t3r Claims to be Selling the Data of Clalit Health Services
9 months 1 week ago
Br34cHM45t3r Claims to be Selling the Data of Clalit Health Services
Dark Web Informer - Cyber Threat Intelligence
CVE-2010-3653 | Adobe Shockwave Player up to 8.0.195 dirapi.dll memory corruption (VU#402231 / EDB-15296)
9 months 1 week ago
A vulnerability was found in Adobe Shockwave Player up to 8.0.195. It has been classified as very critical. Affected is an unknown function in the library dirapi.dll. The manipulation leads to memory corruption.
This vulnerability is traded as CVE-2010-3653. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2010-3654 | Adobe Flash Player up to 10.x memory corruption (VU#298081 / EDB-16667)
9 months 1 week ago
A vulnerability was found in Adobe Flash Player up to 10.x. It has been classified as very critical. This affects an unknown part. The manipulation leads to memory corruption.
This vulnerability is uniquely identified as CVE-2010-3654. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2010-3654 | Adobe Acrobat Reader up to 9.4 authplay.dll memory corruption (VU#298081 / Nessus ID 75420)
9 months 1 week ago
A vulnerability was found in Adobe Acrobat Reader up to 9.4. It has been declared as critical. This vulnerability affects the function authplay.dll. The manipulation leads to memory corruption.
This vulnerability was named CVE-2010-3654. The attack can be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2010-3474 | IBM DB2 9.7/9.7.0.1/9.7.0.2 Access Restriction Dependent access control (Nessus ID 50451 / ID 19587)
9 months 1 week ago
A vulnerability was found in IBM DB2 9.7/9.7.0.1/9.7.0.2 and classified as critical. Affected by this issue is the function Dependent of the component Access Restriction. The manipulation leads to improper access controls.
This vulnerability is handled as CVE-2010-3474. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2010-3475 | IBM DB2 9.7/9.7.0.1/9.7.0.2 Access Restriction access control (Nessus ID 50451 / ID 19587)
9 months 1 week ago
A vulnerability was found in IBM DB2 9.7/9.7.0.1/9.7.0.2. It has been classified as critical. This affects an unknown part of the component Access Restriction. The manipulation leads to improper access controls.
This vulnerability is uniquely identified as CVE-2010-3475. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2010-3445 | Wireshark up to 1.4.0 dissect_ber_unknown resource management (RHSA-2011:0370 / VU#215900)
9 months 1 week ago
A vulnerability was found in Wireshark up to 1.4.0. It has been declared as problematic. Affected by this vulnerability is the function dissect_ber_unknown. The manipulation leads to improper resource management.
This vulnerability is known as CVE-2010-3445. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2010-2936 | OpenOffice 3.2.1 numeric error (Bug 622555 / Nessus ID 48742)
9 months 1 week ago
A vulnerability classified as very critical was found in OpenOffice 3.2.1. Affected by this vulnerability is an unknown functionality. The manipulation leads to numeric error.
This vulnerability is known as CVE-2010-2936. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Submit #457392: Totolink ex1800t V9.1.0cu.2112_B20220316 Stack-based Buffer Overflow [Accepted]
9 months 1 week ago
Submit #457392 / VDB-287272
zhangzheng
Br34cHM45t3r Has Allegedly Leaked Data of University of Düsseldorf
9 months 1 week ago
Br34cHM45t3r Has Allegedly Leaked Data of University of Düsseldorf
Dark Web Informer - Cyber Threat Intelligence
Submit #456048: jwillber JFinalCMS ContentModel.java findPage name 1 SQL Injection [Accepted]
9 months 1 week ago
Submit #456048 / VDB-287271
hadagaga
Submit #456047: jwillber JFinalCMS TemplateController.java content 1 Command Injection [Accepted]
9 months 1 week ago
Submit #456047 / VDB-287270
hadagaga
Submit #456042: jwillber JFinalCMS 1 Cross-Site Request Forgery [Accepted]
9 months 1 week ago
Submit #456042 / VDB-287269
hadagaga