‼️CVE-2021-42028‼️
📖 Read more
Via "National Vulnerability Database"
A vulnerability has been identified in syngo fastView All versions. The affected application lacks proper validation of usersupplied data when parsing BMP files. This could result in an outofbounds write past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process. ZDICAN14860📖 Read more
Via "National Vulnerability Database"
‼️CVE-2021-45465‼️
📖 Read more
Via "National Vulnerability Database"
A vulnerability has been identified in syngo fastView All versions. The affected application lacks proper validation of usersupplied data when parsing BMP files. This could result in a writewhatwhere condition and an attacker could leverage this vulnerability to execute code in the context of the current process. ZDICAN15696📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-6992‼️
📖 Read more
Via "National Vulnerability Database"
Cloudflare version of zlib library was found to be vulnerable to memory corruption issues affecting the deflation algorithm implementation deflate.c. The issues resulted from improper input validation and heapbased buffer overflow. A local attacker could exploit the problem during compression using a crafted malicious file potentially leading to denial of service of the software. Patches The issue has been patched in commit 8352d10 httpsgithub.comcloudflarezlibcommit8352d108c05db1bdc5ac3bdf834dad641694c13c . The upstream repository is not affected. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-49622‼️
📖 Read more
Via "National Vulnerability Database"
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'itemnameid' parameter of the materialbill.php?actionitemRelation resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-49624‼️
📖 Read more
Via "National Vulnerability Database"
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'cancelid' parameter of the materialbill.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-49625‼️
📖 Read more
Via "National Vulnerability Database"
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'id' parameter of the partylisteditsubmit.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-49633‼️
📖 Read more
Via "National Vulnerability Database"
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'buyeraddress' parameter of the buyerdetailsubmit.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-49639‼️
📖 Read more
Via "National Vulnerability Database"
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customerdetails' parameter of the buyerinvoicesubmit.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-49658‼️
📖 Read more
Via "National Vulnerability Database"
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'bankdetails' parameter of the partysubmit.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-49665‼️
📖 Read more
Via "National Vulnerability Database"
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'quantity' parameter of the submitdeliverylist.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-49666‼️
📖 Read more
Via "National Vulnerability Database"
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'custmerdetails' parameter of the submitmateriallist.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50743‼️
📖 Read more
Via "National Vulnerability Database"
Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'dd' parameter of the registration.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50752‼️
📖 Read more
Via "National Vulnerability Database"
Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'e' parameter of the login.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50753‼️
📖 Read more
Via "National Vulnerability Database"
Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'dd' parameter of the userupdateprofile.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-3726‼️
📖 Read more
Via "National Vulnerability Database"
OCSInventory allow stored email template with special characters that lead to a Stored crosssite Scripting. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50760‼️
📖 Read more
Via "National Vulnerability Database"
Online Notice Board System v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'f' parameter of userupdateprofilepic.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50862‼️
📖 Read more
Via "National Vulnerability Database"
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'hotelIDHidden' parameter of the booking.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50863‼️
📖 Read more
Via "National Vulnerability Database"
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'hotelIDHidden' parameter of the generateReceipt.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50864‼️
📖 Read more
Via "National Vulnerability Database"
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'hotelId' parameter of the hotelDetails.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50865‼️
📖 Read more
Via "National Vulnerability Database"
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'city' parameter of the hotelSearch.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"
‼️CVE-2023-50866‼️
📖 Read more
Via "National Vulnerability Database"
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the loginAction.php resource does not validate the characters received and they are sent unfiltered to the database. 📖 Read more
Via "National Vulnerability Database"