SQL Buddy version 1.3.3 suffers from a cross site request forgery vulnerability.
>> AUTHOR: deepcore
SQL Buddy version 1.3.3 suffers from a cross site scripting vulnerability.
Chyrp CMS version 2.5.2 suffers from a cross site scripting vulnerability.
Redis has eloquently explained how it can be used for remote command execution if not securely configured to mitigate arbitrary access.
FreeType 2.6.1 TrueType tt_cmap14_validate Parsing Heap-Based Out-of-Bounds Reads
Python 3.5 suffers from a vulnerability caused by the behavior of the time_strftime() function. When called, the function loops over the format string provided, using strchr to search for each…
Cisco’s tools site suffered from multiple cross site scripting vulnerabilities.
Python versions 3.4 and 3.5 suffer from a vulnerability caused by the behavior of the xmlparse_setattro() function. When called, the function uses the provided name argument in several conditional statements…
Sam Spade version 1.14 local buffer overflow exploit.
Python versions 3.3 through 3.5 suffer from a vulnerability caused by the behavior of the product_setstate() function. When called, the function loops over the state tuple provided and clamps each…