|
211891
|
5.5 |
MEDIUM
Local
|
libelfin_project
|
libelfin
|
A vulnerability in the elf::section::as_strtab function of Libelfin v0.3 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted ELF file.
|
CWE-74
Injection
|
CVE-2020-24826
|
2024-11-21 14:16 |
2021-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211892
|
5.5 |
MEDIUM
Local
|
libelfin_project
|
libelfin
|
A vulnerability in the line_table::line_table function of Libelfin v0.3 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted ELF file.
|
CWE-74
Injection
|
CVE-2020-24825
|
2024-11-21 14:16 |
2021-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211893
|
5.5 |
MEDIUM
Local
|
libelfin_project
|
libelfin
|
A global buffer overflow issue in the dwarf::line_table::line_table function of Libelfin v0.3 allows attackers to cause a denial of service (DOS).
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-24824
|
2024-11-21 14:16 |
2021-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211894
|
5.5 |
MEDIUM
Local
|
libelfin_project
|
libelfin
|
A vulnerability in the dwarf::to_string function of Libelfin v0.3 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted ELF file.
|
CWE-74
Injection
|
CVE-2020-24823
|
2024-11-21 14:16 |
2021-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211895
|
5.5 |
MEDIUM
Local
|
libelfin_project
|
libelfin
|
A vulnerability in the dwarf::cursor::uleb function of Libelfin v0.3 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted ELF file.
|
CWE-74
Injection
|
CVE-2020-24822
|
2024-11-21 14:16 |
2021-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211896
|
5.5 |
MEDIUM
Local
|
libelfin_project
|
libelfin
|
A vulnerability in the dwarf::cursor::skip_form function of Libelfin v0.3 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted ELF file.
|
CWE-74
Injection
|
CVE-2020-24821
|
2024-11-21 14:16 |
2021-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211897
|
7.5 |
HIGH
Network
|
stampit
|
supermixer
|
Prototype pollution in Stampit supermixer 1.0.3 allows an attacker to modify the prototype of a base object which can vary in severity depending on the implementation.
|
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
|
CVE-2020-24939
|
2024-11-21 14:16 |
2021-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211898
|
7.5 |
HIGH
Network
|
pharmacy_medical_store_and_sale_point_project
|
pharmacy_medical_store_and_sale_point
|
The catID parameter in Pharmacy Medical Store and Sale Point v1.0 has been found to be vulnerable to a Time-Based blind SQL injection via the /medical/inventories.php path which allows attackers to r…
|
CWE-89
SQL Injection
|
CVE-2020-24862
|
2024-11-21 14:16 |
2021-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211899
|
8.8 |
HIGH
Network
|
libraw
|
libraw
|
Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identify_process_dng_fields in identify.cpp.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-24870
|
2024-11-21 14:16 |
2021-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211900
|
4.3 |
MEDIUM
Network
|
pluck-cms
|
pluck
|
An issue was discovered in Pluck 4.7.10-dev2. There is a CSRF vulnerability that can editpage via a /admin.php?action=editpage
|
CWE-352
Origin Validation Error
|
CVE-2020-24740
|
2024-11-21 14:16 |
2021-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
