GAT-Ship Web Module versions 1.30 and below suffer from an information disclosure vulnerability.
>> AUTHOR: deepcore
Horde Webmail version 5.2.22 suffers from code execution, cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.
Freelance Cockpit CRM version 3.3.1 suffers from a remote SQL injection vulnerability.
Cisco Expressway Gateway version 11.5.1 suffers from a directory traversal vulnerability.
Huawei eSpace version 1.1.11.103 suffers from a DLL Hijacking issue. The vulnerability is caused due to the application loading libraries (mfc71enu.dll, mfc71loc.dll, tcapi.dll and airpcap.dll) in an insecure manner. This…
Huawei eSpace Meeting cenwpoll.dll unicode stack buffer overflow exploit with SEH overwrite.
Huawei eSpace version 1.1.11.103 Meeting conference whiteboard functionality is vulnerable to a buffer overflow issue when inserting known image file formats. Attackers can exploit this issue to execute arbitrary code…
Huawei eSpace version 1.1.11.103 Meeting suffers from a heap-based memory overflow vulnerability when parsing large amount of bytes to the ‘strNum’ string parameter in GetNameyNum() in ‘ContactsCtrl.dll’ and ‘strName’ string…
A buffer overflow in the DtPrinterAction::PrintActionExists() function in the Common Desktop Environment 2.3.0 and earlier, as used in Oracle Solaris 10 1/13 (Update 11) and earlier, allows local users to…
phpKF version 1.10 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.