EGavilan Media Expense-Management-System 1.0 is vulnerable to SQL Injection via /expense_action.php. This allows a remote attacker to compromise Application SQL database. Date published : 2022-05-31 https://github.com/EGavilan-Media/Expense-Management-System/issues/1 https://medium.com/@shubhamvpandey/cve-2021-44098-8dbaced8b854
EGavilan Media Contact-Form-With-Messages-Entry-Management 1.0 is vulnerable to SQL Injection via Addmessage.php. This allows a remote attacker to compromise Application SQL database. Date published : 2022-05-31 https://github.com/EGavilan-Media/Contact-Form-With-Messages-Entry-Management/issues/1 https://medium.com/@shubhamvpandey/cve-2021-44097-d51c11258571
EGavilan Media User-Registration-and-Login-System-With-Admin-Panel 1.0 is vulnerable to SQL Injection via profile_action – update_user. This allows a remote attacker to compromise Application SQL database. Date published : 2022-05-31 https://github.com/EGavilan-Media/User-Registration-and-Login-System-With-Admin-Panel/issues/2 https://medium.com/@shubhamvpandey/cve-2021-44096-c8874ee47656
A SQL injection vulnerability exists in ProjectWorlds Hospital Management System in php 1.0 on login page that allows a remote attacker to compromise Application SQL database. Date published : 2022-05-31 https://github.com/projectworldsofficial/hospital-management-system-in-php https://github.com/projectworldsofficial/hospital-management-system-in-php/issues/1
A Command Injection vulnerability in httpd web server (setup.cgi) in SerComm h500s, FW: lowi-h500s-v3.4.22 allows logged in administrators to arbitrary OS commands as root in the device via the connection_type parameter of the statussupport_diagnostic_tracing.json...
An issue was discovered in FlightRadar24 v8.9.0, v8.10.0, v8.10.2, v8.10.3, v8.10.4 for Android, allows attackers to cause unspecified consequences due to being able to decompile a local application and extract their API keys. Date...
TOTOLINK EX1200T V4.1.2cu.5215 is affected by a command injection vulnerability that can remotely execute arbitrary code. Date published : 2022-05-31 http://ex1200t.com http://totolink.net/
An issue was discovered in swftools through 20201222. A heap-buffer-overflow exists in the function swf_GetBits() located in rfxswf.c. It allows an attacker to cause code execution. Date published : 2022-05-31 https://github.com/matthiaskramm/swftools/issues/169
An issue was discovered in swftools through 20201222. A heap-use-after-free exists in the function swf_FontExtract_DefineTextCallback() located in swftext.c. It allows an attacker to cause code execution. Date published : 2022-05-31 https://github.com/matthiaskramm/swftools/issues/176
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the function swf_DeleteFilter() located in swffilter.c. It allows an attacker to cause Denial of Service. Date published : 2022-05-31 https://github.com/matthiaskramm/swftools/issues/171
An issue was discovered in swftools through 20201222. A heap-buffer-overflow exists in the function swf_GetD64() located in rfxswf.c. It allows an attacker to cause code execution. Date published : 2022-05-31 https://github.com/matthiaskramm/swftools/issues/175
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the function main() located in swfdump.c. It allows an attacker to cause Denial of Service. Date published : 2022-05-31 https://github.com/matthiaskramm/swftools/issues/170
An issue was discovered in swftools through 20201222. A heap buffer overflow exists in the function swf_FontExtract_DefineTextCallback() located in swftext.c. It allows an attacker to cause code execution. Date published : 2022-05-31 https://github.com/matthiaskramm/swftools/issues/173
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the function swf_GetBits() located in rfxswf.c. It allows an attacker to cause Denial of Service. Date published : 2022-05-31 https://github.com/matthiaskramm/swftools/issues/168