A vulnerability was found in Mingsoft MCMS up to 5.2.9. It has been classified as critical. Affected is an unknown function of the file /cms/category/list. The manipulation of the argument sqlWhere leads to sql injection. It is possible to launch the a…
[github.com/ipfs/go-merkledag] go-merkledag’s ProtoNode may be modified such that common method calls may panic
Impact
A ProtoNode may be modified in such a way as to cause various encode errors which will trigger a panic on common method calls that don’t allow for error returns.
A ProtoNode should only be able to encode to valid DAG-PB, attempting to encode inv…
[nl.basjes.parse.useragent:yauaa-nifi-processors] Yauaa vulnerable to ArrayIndexOutOfBoundsException triggered by a crafted Sec-Ch-Ua-Full-Version-List
Impact
Applications using the Client Hints analysis feature introduced with 7.0.0 can crash because the Yauaa library throws an ArrayIndexOutOfBoundsException.
Applications that do not use this feature are not affected.
Patches
Upgrade to 7.9.0
Workaro…
[nokogiri] Unchecked return value from xmlTextReaderExpand
Summary
Nokogiri 1.13.8, 1.13.9 fails to check the return value from xmlTextReaderExpand in the method Nokogiri::XML::Reader#attribute_hash. This can lead to a null pointer exception when invalid markup is being parsed.
For applications using XML::Rea…
[libp2p] libp2p DoS vulnerability from lack of resource management
Impact
Versions older than v0.38.0 of js-libp2p are vulnerable to targeted resource exhaustion attacks. These attacks target libp2p’s connection, stream, peer, and memory management. An attacker can cause the allocation of large amounts of memory, ulti…
[github.com/libp2p/go-libp2p] libp2p DoS vulnerability from lack of resource management
Impact
Versions older than v0.18.0 of go-libp2p are vulnerable to targeted resource exhaustion attacks. These attacks target libp2p’s connection, stream, peer, and memory management. An attacker can cause the allocation of large amounts of memory, ulti…
[libp2p] libp2p DoS vulnerability from lack of resource management
Impact
An attacker node can cause a victim node to allocate a large number of small memory chunks, which can ultimately lead to the victim’s process running out of memory and thus getting killed by its operating system. When executed continuously, this…
[github.com/casdoor/casdoor] Casdoor arbitrary file deletion vulnerability via uploadFile function
Casdoor before v1.126.1 was discovered to contain an arbitrary file deletion vulnerability via the uploadFile function.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-44942
https://github.com/casdoor/casdoor/issues/1171
https://github.com/casdoo…
[io.quarkus:quarkus-vertx-http] Quarkus CORS filter allows simple GET and POST requests with an invalid Origin to proceed
Quarkus CORS filter allows simple GET and POST requests with invalid Origin to proceed. Simple GET or POST requests made with XMLHttpRequest are the ones which have no event listeners registered on the object returned by the XMLHttpRequest upload prope…
[topthink/framework] Thinkphp has a code logic error
Thinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-44289
https://github.com/top-think/framework/issues/2772
https://github.com/advisories/GHSA-59fh-rjq3-xq7j