A vulnerability was found in IdeaCMS up to 1.8. The impacted element is an unknown function of the file app/common/logic/admin/Config.php of the component Website Name Handler. Performing manipulation of the argument 网站名称 results in...
URL Redirection to Untrusted Site (‘Open Redirect’) vulnerability in Logo Software Inc. Logo Cloud allows Phishing, Forceful Browsing.This issue affects Logo Cloud: before 2025.R6. More information : https://www.usom.gov.tr/bildirim/tr-25-0318
Improper Neutralization of Input During Web Page Generation (XSS or ‘Cross-site Scripting’) vulnerability in Logo Software Inc. Logo Cloud allows Cross-Site Scripting (XSS).This issue affects Logo Cloud: before 1.18. More information : https://www.usom.gov.tr/bildirim/tr-25-0318
Improper Encoding or Escaping of Output vulnerability in Logo Software Inc. Logo Cloud allows Phishing.This issue affects Logo Cloud: before 2.57. More information : https://www.usom.gov.tr/bildirim/tr-25-0318
Authorization Bypass Through User-Controlled Key vulnerability in Logo Software Inc. Logo Cloud allows Forceful Browsing, Resource Leak Exposure.This issue affects Logo Cloud: before 0.67. More information : https://www.usom.gov.tr/bildirim/tr-25-0318
A vulnerability was detected in Tenda AC18 15.03.05.19(6318). This issue affects some unknown processing of the file /goform/SetDDNSCfg. The manipulation of the argument ddnsEn results in stack-based buffer overflow. It is possible to launch...
A flaw has been found in code-projects Online Course Registration 1.0. Impacted is an unknown function of the file /admin/manage-students.php. This manipulation of the argument ID causes sql injection. The attack can be initiated...
When decoding an OpenEXR file that uses DWAA or DWAB compression, there’s an implicit assumption that all image channels have the same pixel type (and size), and that if there are four channels, the...
It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion stored_frame. Stored frames can later be referenced by FTCH chunks. For files using subversion < 2, the...
When calculating the content path in handling of MPEG-DASH manifests, there’s an out-of-bounds NUL-byte write one byte past the end of the buffer.When we call xmlNodeGetContent below [0], it returns a buffer precisely allocated to...
When parsing the header for a DHAV file, there’s an integer underflow in offset calculation that leads to reading the duration from before the start of the allocated buffer. If we load a DHAV...
When decoding a frame for a SANM file (ANIM v0 variant), the decoded data can be larger than the buffer allocated for it. Frames encoded with codec 48 can specify their resolution (width x...
When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data. We read rle_raw_size from the input...
When decoding an OpenEXR file that uses DWAA or DWAB compression, there’s an implicit assumption that the height and width are divisible by 8. If the height or width of the image is not...