Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2020-23567: publicResearch/poc/irfanview/2 at master · KamasuOri/publicResearch

Irfanview v4.53 allows attackers to to cause a denial of service (DoS) via a crafted JPEG 2000 file. Related to “Integer Divide By Zero starting at JPEG2000!ShowPlugInSaveOptions_W+0x00000000000082ea”

CVE
#dos

Related news

CVE-2020-23565: publicResearch/poc/irfanview/3 at master · KamasuOri/publicResearch

Irfanview v4.53 allows attackers to execute arbitrary code via a crafted JPEG 2000 file. Related to a "Data from Faulting Address controls Branch Selection starting at JPEG2000!ShowPlugInSaveOptions_W+0x0000000000032850".

CVE-2020-21250: Time-based blind SQL injection Vulnerability in CSZCMS-1.2.4 · Issue #22 · cskaza/cszcms

CSZ CMS v1.2.4 was discovered to contain an arbitrary file upload vulnerability in the component /core/MY_Security.php.

CVE-2020-21725: OpenSNS v6.1.0 have unauthorized sleep blind injection SQL vulnerability pid parameter · Issue #1 · CoCoCoCoCoColi/CVE

OpenSNS v6.1.0 contains a blind SQL injection vulnerability in /Controller/ChinaCityController.class.php via the pid parameter.

CVE-2020-21726: A unauthorized sleep blind injection SQL vulnerability was discovered in OpenSNS CMS v6.1.0 about cid parameter · Issue #2 · CoCoCoCoCoColi/CVE

OpenSNS v6.1.0 contains a blind SQL injection vulnerability in /Controller/ChinaCityController.class.php via the cid parameter.

CVE-2020-20797: sql injection vulnerability (2) · Issue #26 · FlameNET/FlameCMS

FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php.

CVE-2020-20796: sql injection vulnerability · Issue #24 · FlameNET/FlameCMS

FlameCMS 3.3.5 contains a SQL injection vulnerability in /master/article.php via the "Id" parameter.

CVE-2021-24741: Change Log | Support Board

The Support Board WordPress plugin before 3.3.4 does not escape multiple POST parameters (such as status_code, department, user_id, conversation_id, conversation_status_code, and recipient_id) before using them in SQL statements, leading to SQL injections which are exploitable by unauthenticated users.

CVE-2020-21121: SQL Injection Vulerable. · Issue #259 · Kliqqi-CMS/Kliqqi-CMS

Pligg CMS 2.0.2 contains a time-based SQL injection vulnerability via the $recordIDValue parameter in the admin_update_module_widgets.php file.

CVE-2021-38840: Offensive Security’s Exploit Database Archive

SQL Injection can occur in Simple Water Refilling Station Management System 1.0 via the water_refilling/classes/Login.php username parameter.

CVE-2021-38754: SQL Injection Vulnerability in Message Search · Issue #7 · kishan0725/Hospital-Management-System

SQL Injection vulnerability in Hospital Management System due to lack of input validation in messearch.php.

CVE-2021-32610: Release 1.4.14 · pear/Archive_Tar

In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.

CVE-2020-28948: Multiple vulnerabilities through filename manipulation (CVE-2020-28948 and CVE-2020-28949) · Issue #33 · pear/Archive_Tar

Archive_Tar through 1.4.10 allows an unserialization attack because phar: is blocked but PHAR: is not blocked.

CVE-2020-28949: Multiple vulnerabilities through filename manipulation (CVE-2020-28948 and CVE-2020-28949) · Issue #33 · pear/Archive_Tar

Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed.

CVE-2019-10131: ... · ImageMagick/ImageMagick@cb1214c

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907