Aggregator

A vulnerability classified as very critical was found in Mozilla Firefox. This vulnerability affects the function NewIdArray. The manipulation leads to numeric error. This vulnerability was named CVE-2010-3767. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Pidgin and classified as problematic. This vulnerability affects the function purple_base64_decode of the component NTLM Authentication. The manipulation leads to improper input validation. This vulnerability was named CVE-2010-3711. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Intel E1000. It has been declared as problematic. Affected by this vulnerability is the function load_elf_binary. The manipulation leads to denial of service. This vulnerability is known as CVE-2010-0307. The attack needs to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

AnonBF is Allegedly Selling VPN Access to 39 Unidentified Companies

A vulnerability has been found in SourceCodester Phone Contact Manager System 1.0 and classified as problematic. Affected by this vulnerability is the function ContactBook::adding of the file ContactBook.cpp. The manipulation leads to improper input validation. This vulnerability is known as CVE-2024-12355. The attack needs to be approached locally. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in SourceCodester Phone Contact Manager System 1.0. Affected is the function UserInterface::MenuDisplayStart of the component User Menu. The manipulation leads to buffer overflow. This vulnerability is traded as CVE-2024-12354. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, has been found in SourceCodester Phone Contact Manager System 1.0. This issue affects the function UserInterface::MenuDisplayStart of the component User Menu. The manipulation of the argument name leads to improper input validation. The identification of this vulnerability is CVE-2024-12353. Attacking locally is a requirement. Furthermore, there is an exploit available.

Submit #457864 / VDB-287275

Submit #457477 / VDB-287274

Submit #457438 / VDB-287273

A vulnerability classified as problematic was found in TOTOLINK EX1800T 9.1.0cu.2112_B20220316. This vulnerability affects the function sub_40662C of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ssid leads to stack-based buffer overflow. This vulnerability was named CVE-2024-12352. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in JFinalCMS 1.0. This affects the function findPage of the file src\main\java\com\cms\entity\ContentModel.java of the component File Content Handler. The manipulation of the argument name leads to sql injection. This vulnerability is uniquely identified as CVE-2024-12351. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in JFinalCMS 1.0. It has been rated as critical. Affected by this issue is the function update of the file \src\main\java\com\cms\controller\admin\TemplateController.java of the component Template Handler. The manipulation of the argument content leads to command injection. This vulnerability is handled as CVE-2024-12350. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in JFinalCMS 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/tag/save. The manipulation leads to cross-site request forgery. This vulnerability is known as CVE-2024-12349. The attack can be launched remotely. Furthermore, there is an exploit available.

Br34cHM45t3r Claims to be Selling the Data of Clalit Health Services

A vulnerability was found in Adobe Shockwave Player up to 8.0.195. It has been classified as very critical. Affected is an unknown function in the library dirapi.dll. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2010-3653. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe Flash Player up to 10.x. It has been classified as very critical. This affects an unknown part. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2010-3654. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe Acrobat Reader up to 9.4. It has been declared as critical. This vulnerability affects the function authplay.dll. The manipulation leads to memory corruption. This vulnerability was named CVE-2010-3654. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in IBM DB2 9.7/9.7.0.1/9.7.0.2 and classified as critical. Affected by this issue is the function Dependent of the component Access Restriction. The manipulation leads to improper access controls. This vulnerability is handled as CVE-2010-3474. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in IBM DB2 9.7/9.7.0.1/9.7.0.2. It has been classified as critical. This affects an unknown part of the component Access Restriction. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2010-3475. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.