| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| A vulnerability was found in CodeAstro Payroll System 1.0. This affects an unknown part of the file /home_employee.php. The manipulation of the argument emp_id results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used. |
| IBM Operations Analytics - Log Analysis and IBM SmartCloud Analytics - Log Analysis uses default passwords default passwords from the manufacturing process for use during the installation process, which could allow an attacker to bypass authentication. |
| A security flaw has been discovered in horizon921 mcpilot 0.1.0. The impacted element is an unknown function of the file client/src/app/api/mcp/call/route.ts of the component MCP API Call Endpoint. The manipulation of the argument serverBaseUrl results in server-side request forgery. The attack can be launched remotely. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet. |
| A flaw was found in rrdcached, a component of rrdtool. A local attacker with access to a rrdcached socket can exploit a stack-based buffer overflow by sending an oversized CREATE request. This vulnerability can lead to a denial of service by crashing the daemon or potentially allow for arbitrary code execution, impacting the integrity and confidentiality of data. |
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Emilia Projects Progress Planner allows Stored XSS.
This issue affects Progress Planner: from n/a through 1.9.0. |
| Missing Authorization vulnerability in Elementor Elementor Website Builder allows Exploiting Incorrectly Configured Access Control Security Levels.
This issue affects Elementor Website Builder: from n/a through 4.1.0. |
| Memory corruption in windows drivers while sending incorrect trusted application request |
| Memory Corruption when output buffer size is smaller than input buffer size during data copying operation. |
| Memory Corruption when sending random number generator command with insufficient output buffer size. |
| Memory Corruption when processing display command line information due to improper initialization of a variable. |
| Memory corruption while processing fastboot OEM commands. |
| Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader. |
| Memory corruption while processing fastboot commands with invalid input. |
| Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow. |
| Memory corruption while processing fastboot commands with improperly formatted input. |
| Memory Corruption when processing fastboot commands to set display mode. |
| IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction. |
| Memory corruption while processing IOCTL calls for escape operations. |
| Memory corruption while processing multiple IOCTL command for escape operations. |
| Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications. |
