toolkit project toolkit vulnerabilities and exploits

(subscribe to this query)

Metadata Anonymisation Toolkit (MAT) 0.6 and 0.6.1 silently fails to perform "Clean metadata" actions upon invocation from the Nautilus contextual menu, which allows context-dependent malicious users to obtain sensitive information by reading a file for which cleaning h...

Metadata Anonymisation Toolkit Project Metadata Anonymisation Toolkit 0.6.1 Metadata Anonymisation Toolkit Project Metadata Anonymisation Toolkit 0.6

In the `@actions/core` npm module before version 1.2.6,`addPath` and `exportVariable` functions communicate with the Actions Runner over stdout by generating a string in a specific format. Workflows that log untrusted data to stdout may invoke these commands, resulting in the pat...

Toolkit Project Toolkit

2 Github repositories

Cross-site scripting (XSS) vulnerability in tinymce/popup.php in the Ruven Toolkit plugin 1.1 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the popup parameter.

Ruven-toolkit Project Ruven-toolkit

The Multi-page Toolkit WordPress plugin up to and including 2.6 does not have CSRF check in place when updating its settings, which could allow malicious users to make a logged in admin change them via a CSRF attack and lead to Stored Cross-Site Scripting due to the lack of sanit...

Multi-page Toolkit Project Multi-page Toolkit

Multiple SQL injection vulnerabilities in Scout Portal Toolkit (SPT) 1.3.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the ParentId parameter in SPT--BrowseResources.php, (2) ResourceId parameter in SPT--FullRecord.php, (3) Resourc...

Internet Scout Project Scout Portal Toolkit 1.4.0 Internet Scout Scout Portal Toolkit 1.3.0 Beta Internet Scout Scout Portal Toolkit

2 EDB exploits

Cross-site request forgery (CSRF) vulnerability in the XC NCIP Provider module in the eXtensible Catalog (XC) Drupal Toolkit allows remote malicious users to hijack the authentication of users with the "administer ncip providers" permission for requests that alter NCIP ...

The Extensible Catalog Drupal Toolkit Project The Extensible Catalog Drupal Toolkit -

The silc_http_server_parse function in lib/silchttp/silchttpserver.c in the internal HTTP server in silcd in Secure Internet Live Conferencing (SILC) Toolkit prior to 1.1.9 allows remote malicious users to overwrite a stack location and possibly execute arbitrary code via a craft...

Silcnet Silc Toolkit 1.1.3 Silcnet Silc Toolkit 1.1.5 Silcnet Silc Toolkit 1.1 Silcnet Silc Toolkit 1.1.1 Silcnet Silc Toolkit 1.1.6 Silcnet Silc Toolkit 1.1.4 Silcnet Silc Toolkit 1.1.2 Silcnet Silc Toolkit

The silc_asn1_encoder function in lib/silcasn1/silcasn1_encode.c in Secure Internet Live Conferencing (SILC) Toolkit prior to 1.1.8 allows remote malicious users to overwrite a stack location and possibly execute arbitrary code via a crafted OID value, related to incorrect use of...

Silcnet Silc Toolkit 1.1.3 Silcnet Silc Toolkit 1.1.5 Silcnet Silc Toolkit 1.1 Silcnet Silc Toolkit 1.1.1 Silcnet Silc Toolkit 1.1.4 Silcnet Silc Toolkit Silcnet Silc Toolkit 1.1.2

Multiple format string vulnerabilities in lib/silcclient/client_entry.c in Secure Internet Live Conferencing (SILC) Toolkit prior to 1.1.10, and SILC Client prior to 1.1.8, allow remote malicious users to execute arbitrary code via format string specifiers in a nickname field, re...

Silcnet Silc Client 1.1.6 Silcnet Silc Toolkit 1.1.3 Silcnet Silc Toolkit 1.1.5 Silcnet Silc Toolkit Silcnet Silc Client 1.1.1 Silcnet Silc Client 1.1.2 Silcnet Silc Toolkit 1.1.8 Silcnet Silc Client 1.1.3 Silcnet Silc Client Silcnet Silc Toolkit 1.1 Silcnet Silc Client 1.1.4 Silcnet Silc Toolkit 1.1.1 Silcnet Silc Toolkit 1.1.6 Silcnet Silc Toolkit 1.1.4 Silcnet Silc Toolkit 1.1.2

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restoring a project.

Schneider-electric C-bus Toolkit

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook