CVE Catalog

A cross-site scripting (XSS) vulnerability has been identified in Mettle Sendportal versions through 3.0.1. The issue resides within the Campaign Handler component, specifically in the webview directory. The vulnerability allows remote injection of JavaScript into the campaign content, which is then rendered without proper sanitization. This flaw was reported to the project, but no response has been received.

A global buffer overflow vulnerability has been identified in Assimp versions prior to 6.0.4, specifically within the Half-Life 1 MDL Loader component. The issue arises in the 'read_sequence_infos' function of 'HL1MDLLoader.cpp', where the parser reads bone names from a malformed MDL file without proper length validation. This oversight allows an excessively long name to overflow the 'aiString' buffer, leading to an out-of-bounds memory read of 1023 bytes. The vulnerability requires local exploitation and has been publicly disclosed.

A use-after-free vulnerability has been identified in Assimp versions prior to 6.0.4, specifically within the ASE file parser component. The issue arises in the function 'aiNode::~aiNode' located in 'scene.cpp'. When a malformed ASE file is parsed, an invalid node tree is created, leading to a heap-use-after-free condition. This vulnerability must be exploited locally, and a proof-of-concept has been made publicly available.

A heap-based buffer overflow vulnerability has been identified in Assimp versions prior to 6.0.4. The issue arises in the Half-Life 1 MDL Loader component, specifically within the 'extract_anim_value' function of 'HL1MDLLoader.cpp'. The vulnerability is triggered by manipulating the 'num.total' argument, leading to an infinite loop and out-of-bounds memory access. This vulnerability must be exploited locally.

A heap-based buffer overflow vulnerability has been identified in Assimp versions prior to 6.0.4. The issue arises in the Half-Life 1 MDL Loader component, specifically within the 'read_animations' function of 'HL1MDLLoader.cpp'. This vulnerability allows for local exploitation, where the parser writes beyond the allocated memory bounds of an animation array, leading to a crash. The lack of proper boundary validation in the code is the root cause of this vulnerability.

A heap-based buffer overflow vulnerability has been identified in Assimp versions prior to 6.0.4. The issue arises in the Half-Life 1 MDL Loader component, specifically within the 'read_meshes' function of 'HL1MDLLoader.cpp'. This vulnerability allows for local execution exploitation. The problem occurs when the loader processes malformed MDL files that reference non-existent bones, leading to out-of-bounds memory access.

A stored cross-site scripting vulnerability has been identified in the Raisulislamg4 Student Management System. The issue resides in the 'admission_form_check.php' file, where user input in the 'message' field is not properly sanitized before being saved to the database. This unsanitized data is later displayed on the 'admissions.php' page, allowing injected scripts to execute in the context of the administrator's session. The vulnerability affects all versions of the application up to the latest commit on November 1, 2023.

A SQL injection vulnerability has been identified in the user creation handler of the Raisulislamg4 Student Management System. This issue affects versions of the application prior to the latest commit on November 1, 2023. The vulnerability arises in the file 'add_user_check.php', where an unknown function improperly handles the 'role' argument. This oversight allows for remote exploitation, as the application fails to validate user roles before inserting them into the database. The vulnerability has been publicly disclosed and could be actively exploited.

A SQL injection vulnerability has been identified in the Raisulislamg4 Student Management System, specifically in the delete.php file, within versions prior to the latest commit on November 1, 2023. The vulnerability arises from an unknown function that allows for SQL injection through manipulation of the user_id, course_id, teacher_id, student_id, or application_id parameters. This issue can be exploited remotely, as the delete.php script lacks authentication and authorization checks, enabling unauthenticated users to delete various records such as users, courses, teachers, students, and applications. The SQL injection occurs because the SQL queries are constructed by directly concatenating unsanitized GET values, creating an opportunity for attackers to manipulate the SQL query and potentially execute arbitrary SQL commands.

A SQL injection vulnerability has been identified in the login component of the Raisulislamg4 Student Management System, affecting versions prior to the latest commit on November 1, 2023. The issue arises in the file 'login_check.php', where user-supplied input for the username is directly concatenated into an SQL query without proper validation or escaping. This allows attackers to inject arbitrary SQL code, bypassing password authentication and gaining unauthorized access to admin privileges. The vulnerability can be exploited remotely, and the exploit is publicly available.

A denial-of-service vulnerability has been identified in NousResearch Hermes-Agent versions through 2026.4.30. The issue arises in the Webhook Endpoint component, specifically within the Feishu webhook handler. The vulnerability allows remote attackers to send unauthenticated requests with invalid signatures, which consume the same rate-limit bucket as legitimate traffic. This pre-authentication rate-limit exhaustion can lead to dropped or delayed valid webhook events, disrupting automated workflows and message-driven processes.

A persistent prompt injection vulnerability has been identified in NousResearch Hermes-Agent versions through 2026.4.30. The issue resides in the memory scanning function of the tool 'memory_tool.py', where a regex pattern fails to detect injection payloads that include extra words between 'ignore' and the specified keywords. This oversight allows an attacker to manipulate the agent's behavior permanently by injecting instructions that are saved to a memory file and executed in future sessions. The vulnerability can be exploited remotely, and the available public exploit demonstrates its potential for misuse.

A semantic injection vulnerability has been identified in NousResearch Hermes-Agent versions through 2026.4.30. The issue resides in the environment variable parser function `_sanitize_env_lines` within `hermes_cli/config.py`. This vulnerability allows for the injection of arbitrary configuration variables by embedding known key names into credential values. When a user saves a crafted API key, the parser inadvertently splits the line, creating a new variable declaration. This exploitation can intercept API calls, exfiltrate prompts, and steal credentials. The vulnerability is present in the default `.env` file parsing behavior, without requiring special permissions or configurations.

A reflected cross-site scripting vulnerability has been identified in OTRS and OTRS Community Edition ticket handling. This issue allows authenticated attackers to inject malicious JavaScript into request parameters related to ticket actions. When the crafted link is opened, the injected script executes in the context of the authenticated agent session. This vulnerability affects OTRS version 7.0.x, and OTRS Community Edition versions 6.x and earlier are also vulnerable. Additionally, products based on OTRS Community Edition are likely affected.

A denial-of-service vulnerability has been identified in OTRS and OTRS Community Edition ticket article rendering. This issue arises from improper handling of active SVG content, allowing attackers to inject specially crafted SVG payloads through email. When affected tickets are opened by an agent or customer, the injected SVGs cause resource exhaustion on the browser side, leading to a denial-of-service condition. Notably, this vulnerability can be exploited without requiring JavaScript execution and is not mitigated by the configured Content Security Policy (CSP). The vulnerability affects OTRS versions 7.0.X, 8.0.X, 2023.X, 2024.X, 2025.X, and 2026.X prior to 2026.4.X. Additionally, OTRS Community Edition 6.x and earlier versions are vulnerable, as well as products based on OTRS Community Edition.

A vulnerability exists in OTRS versions 2026.x and above, specifically within STORM-powered OTRS modules 7.0.X, 8.0.X, 2023.X, 2024.X, 2025.X, and 2026.X prior to 2026.4.X. The issue arises from improper permission management in the Document Search Article Meta Filters modules, which inadvertently exposes information about the number of affected Configuration Items (CIs), Service Level Agreements (SLAs), and services. This information can be accessed without proper authorization, allowing users to gain insights into these elements without actually having access to them.

A vulnerability exists in OTRS versions 7.0.X, 8.0.X, 2023.X, 2024.X, 2025.X, and 2026.X prior to 2026.4.X. It involves improper management of permissions in the External Interface and ConfigItem List module, which enables an authenticated customer to request and retrieve Configuration Item (CI) data from the system. This issue arises only if the Configuration Management Database (CMDB) feature is activated and Customer Group Support is in use.

A vulnerability in the OTRS Customer Backend module has been identified, allowing improper input validation that could lead to unauthorized access to customer information restricted from certain groups. This issue affects OTRS versions 7.0.X, 8.0.X, 2023.X, 2024.X, 2025.X, and 2026.X prior to 2026.4.X. The vulnerability is only applicable if the feature is enabled and CustomerGroupSupport is utilized.

A vulnerability allowing unauthenticated SQL injection has been identified in the database layer module of OTRS and OTRS Community Edition. This improper input validation issue can lead to authentication bypass, but only if the MySQL or MariaDB server is configured with the NO_BACKSLASH_ESCAPES SQL mode. The vulnerability affects OTRS versions 7.0.X, 8.0.X, 2023.X, 2024.X, 2025.X, 2026.X prior to 2026.4.X, as well as OTRS Community Edition version 6.0.x. Additionally, products based on OTRS Community Edition are likely affected.

A resource exhaustion vulnerability has been identified in the email processing component of OTRS. This issue allows for uncontrolled resource allocation, which can overwhelm the web server and cause it to crash. The vulnerability affects OTRS versions 8.0.X, 2023.X, 2024.X, 2025.X, and 2026.X prior to 2026.4.X. Additionally, ((OTRS)) Community Edition 6.x, OTRS 7.x, and products based on ((OTRS)) Community Edition are likely affected.

A denial-of-service vulnerability has been identified in the MediaTek WLAN STA driver. This issue arises from a missing bounds check, which can lead to a system crash. The vulnerability requires user execution privileges for exploitation, but does not need user interaction. Affected chipsets include MT7902, MT7920, MT7921, MT7922, MT7925, and MT7927.

A vulnerability in the Geniezone component of certain MediaTek chipsets allows for a local escalation of privilege. This issue arises from a missing bounds check, leading to a possible out-of-bounds write. Exploitation of this vulnerability requires that the malicious actor already has System privileges. User interaction is not necessary for exploitation.

A race condition in the Geniezone component of certain MediaTek chipsets can lead to a possible out-of-bounds write. This vulnerability could allow local escalation of privileges for an actor who has already obtained system privileges. The issue arises from a timing-related flaw that creates a window for exploitation, and does not require user interaction.

A high-severity out-of-bounds write vulnerability has been identified in the Geniezone component of various MediaTek chipsets, including MT6739, MT6761, MT6765, MT6768, MT6781, MT6789, MT6835, MT6853, MT6855, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991, MT8673, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8791T, MT8793, MT8797, MT8798, and MT8910. The vulnerability arises from a missing bounds check, which could lead to local privilege escalation for an actor who has already gained system privileges. Exploitation does not require user interaction.

A heap buffer overflow vulnerability has been identified in the WLAN access point driver of certain MediaTek chipsets. This vulnerability can lead to memory corruption and potentially allow for remote code execution, although it requires user execution privileges. The issue does not require user interaction for exploitation.

A prompt injection vulnerability has been identified in NousResearch hermes-agent versions through 0.12.0. The issue arises in the '_compress_context' function of 'run_agent.py', where unsanitized todo item content is injected into the conversation as a user message. This vulnerability can be exploited remotely, allowing an attacker to override system instructions, exfiltrate sensitive data, abuse the agent's tools, and maintain control across multiple sessions.

A prompt injection filter bypass vulnerability has been identified in NousResearch Hermes-Agent versions through 2026.4.30. The issue resides in the skills management functionality, specifically within the tools/skills_tool.py file. The vulnerability allows for injection attacks that can be executed remotely, by exploiting the filter's reliance on naive exact-string matching to detect malicious content in user-installed skills. This flaw enables crafted prompt injection payloads to pass undetected into the LLM agent context, potentially allowing attackers to manipulate the agent's behavior or extract sensitive information.

An OS command injection vulnerability has been identified in nextlevelbuilder GoClaw versions through 3.11.3. The issue resides in the FsBridge.WriteFile function within the file internal/sandbox/fsbridge.go, specifically in the write_file tool component. This vulnerability allows for arbitrary command execution as the root user inside a Docker sandbox container, triggered by manipulating file paths in LLM prompts. The exploitation is possible remotely, and the vulnerability has been made public.

A vulnerability exists in GoClaw versions up to 3.11.3, specifically within the evolution suggestion management feature. The issue arises in the 'auth' function of 'internal/http/evolution_handlers.go', where the authorization middleware is improperly configured. This flaw allows unauthorized or low-privilege users to manipulate system-generated evolution suggestions, such as approving or rejecting them. Such actions can disrupt tenant configurations and agent behaviors, leading to significant functional degradations across the platform.

A vulnerability allowing improper privilege management has been identified in GoClaw versions through 3.11.3. The issue arises in the RoleAdmin Gateway, specifically within the handleSave function of the tts_config.go file. This flaw enables remote exploitation by authenticated users with Viewer or lower-tier roles, allowing them to modify, delete, or upload administrative configurations such as Text-to-Speech (TTS) settings and storage files. The vulnerability exploits a bypass in tenant-level role verification, granting unauthorized access to critical functionalities.

An authentication bypass vulnerability has been identified in the Droidclaw application, specifically in versions through 0.5.3. The issue arises in the '/pairing/claim' endpoint, where the application fails to properly limit excessive authentication attempts. This vulnerability allows an unauthenticated attacker to spoof IP addresses using the 'X-Forwarded-For' and 'X-Real-IP' headers, bypassing the rate limiter and brute-forcing the 6-digit pairing code within minutes. Successfully guessing a code grants access to the victim's API key, enabling full control over their device.

A vulnerability allowing horizontal unauthorized read access has been identified in the Leave Request REST API of Dolibarr ERP CRM, in versions prior to 23.0.2. The issue arises in the function checkUserAccessToObject within the file htdocs/holiday/class/api_holidays.class.php. Low-privileged internal users can exploit this vulnerability to access leave request data of other employees within the same entity, bypassing intended authorization checks. This API-side object-level authorization bypass is not present in the Web UI, which correctly restricts access.

A vulnerability allowing OS command injection has been identified in zhayujie ChatGPT-on-WeChat versions through 2.0.8. This issue arises in the Bash Tool component, specifically within the _get_safety_warning function of agent/tools/bash/bash.py. The vulnerability can be exploited remotely, leading to unauthorized execution of OS commands. The default configuration of the application, which includes an auto-loaded Bash tool in agent mode, facilitates this exploitation. The vulnerability has been publicly disclosed, and a patch is available in version 2.0.9.

A path traversal vulnerability has been identified in AstrBotDevs AstrBot version 4.23.6. The issue arises in the API endpoint '/api/skills/delete', where manipulation of the 'Name' argument allows for unauthorized file access. This vulnerability can be exploited remotely, and a proof-of-concept exploit has been made public.

A vulnerability allowing authorization bypass through Insecure Direct Object Reference (IDOR) via delimiter injection has been identified in AstrBot version 4.24.2. The issue arises in the session handling of the WebChat feature, specifically within the 'astr_main_agent' file. The vulnerability allows authenticated users to manipulate the 'session_id' argument, injecting a delimiter that tricks the server into associating actions with a different user's session. This exploitation can be performed remotely, and a public exploit is available.

A vulnerability in AstrBot version 4.23.6 allows non-admin users to write arbitrary files into globally shared skill directories. This issue arises from the function '_normalize_rw_path' in 'astrbot/core/tools/computer_tools/fs.py', where the authorization check incorrectly permits write access to restricted users. The vulnerability can be exploited remotely and has been publicly disclosed.

A prompt injection vulnerability has been identified in AstrBot version 4.23.6. The issue arises in the skill management function '_sanitize_prompt_description', located in 'astrbot/core/skills/skill_manager.py'. This vulnerability allows for remote injection attacks by exploiting unsanitized skill descriptions in locally uploaded skills. The flaw was disclosed to the vendor, but no response was received.

A SQL injection vulnerability has been identified in the Online Hospital Management System version 1.0. The issue resides in the Appointment Handler component, specifically within the appointmentdetail.php file. The vulnerability is triggered by manipulating the 'editid' parameter, allowing attackers to inject malicious SQL queries. This exploitation can be performed remotely, posing a significant risk to the application's database integrity and security.

A SQL injection vulnerability has been identified in the Online Hospital Management System version 1.php. The issue arises in the login_user function within the login_1.php file, where the 'username' parameter is manipulated and directly inserted into a SQL query without proper sanitization. This flaw allows remote attackers to execute unauthorized SQL commands, potentially bypassing authentication and accessing sensitive data from the database.

A stack-based buffer overflow vulnerability has been identified in the D-Link DI-8400 router, affecting firmware versions through 16.07.26A1. The vulnerability arises in an unknown function of the file dbsrv.asp, where improper handling of the str argument allows for remote exploitation. The issue has been made public, and the initial research advisory notes conflicting parameter names regarding the vulnerability.

A vulnerability allowing unauthorized file uploads has been identified in Metasoft MetaCRM version 6.4.0. The issue arises in an unknown function of the file develop/systparam/softlogo/upload.jsp, where unrestricted file upload capabilities are present. This vulnerability can be exploited remotely.

A SQL injection vulnerability has been identified in OFCMS version 1.1.3. The issue resides in the JSON Query Interface, specifically within the SysUserController component. The vulnerability is triggered by the Query function in the file 'SysUserController.java', where the 'field' parameter is improperly validated. This flaw allows attackers to manipulate SQL queries by injecting complex expressions, including nested subqueries and Boolean logic, into the 'ORDER BY' clause. The vulnerability can be exploited remotely, and public exploit details are available.

A SQL injection vulnerability has been identified in OFCMS version 1.1.3 within the JSON Query Interface. The issue arises in the SystemParamController component, specifically in the Query function of the file located at 'ofcms-admin/src/main/java/com/ofsoft/cms/admin/controller/system/SystemParamController.java'. The vulnerability allows remote attackers to manipulate the 'field' parameter, which is improperly validated and directly appended to the 'ORDER BY' clause of the SQL query. This flaw enables blind SQL injection by crafting complex SQL expressions, including nested subqueries and Boolean logic.

A SQL injection vulnerability has been identified in OFCMS version 1.1.3. The issue resides in the JSON Query Interface, specifically within the SystemDictController component. The vulnerability is triggered by the Query function, where the 'field' parameter is improperly validated. This flaw allows remote attackers to manipulate SQL queries by injecting complex SQL expressions, including nested subqueries and Boolean logic, into the 'ORDER BY' clause. The vulnerability has been publicly disclosed and is exploitable.

A divide-by-zero vulnerability has been identified in Assimp versions prior to 6.0.4. The issue arises in the FBXExporter::WriteObjects function within FBXExporter.cpp, specifically when handling UV channels. If a UV channel exists but has zero components, the exporter attempts to divide by zero, leading to a crash. This vulnerability can be exploited locally.

A heap-based buffer overflow vulnerability has been identified in Assimp versions prior to 6.0.4. The issue arises in the glTFCommon::CopyValue function within glTFCommon.h, specifically when the 4x4 Matrix Parser processes a corrupted or malicious GLTF file. The vulnerability occurs because the parser allocates only 1 byte of memory but attempts to read 64 bytes (equivalent to 16 float values for a 4x4 matrix) without proper boundary checks. This out-of-bounds read not only causes a crash but could also be exploited to leak sensitive memory information.

A null pointer dereference vulnerability has been identified in Assimp versions prior to 6.0.4. The issue arises in the glTF2 importer, specifically within the LazyDict function of glTF2Asset.h. The vulnerability occurs when the importer accesses animation channels that reference non-existent nodes, leading to a crash. This flaw can be exploited locally, and a public exploit is available.

A null pointer dereference vulnerability has been identified in Assimp versions through 6.0.4, specifically within the glTF importer component. The issue arises in the 'ImportMeshes' function of 'glTFImporter.cpp', where the 'ExtractData()' return value is not properly checked. This oversight allows a null pointer to be dereferenced, leading to a crash. The vulnerability requires local execution to exploit.

A vulnerability in OTRS version 2026.3.1 arises from an improper default configuration that automatically applies the 'Is visible for customer' flag to ticket article forwarding actions. This default setting prevents users from disabling the flag through the user interface, resulting in the unintended disclosure of internal ticket information to the External Frontend.

A null pointer dereference vulnerability has been identified in Assimp versions prior to 6.0.4. The issue arises in the glTF2Importer::ImportEmbeddedTextures function within the file code/AssetLib/glTF2/glTF2Importer.cpp. This vulnerability occurs when the importer processes glTF files with malformed mimeType values, leading to an invalid memory read and causing the application to crash. The root cause is pointer arithmetic performed on the result of strchr, without checking for NULL. When the mimeType lacks a '/', strchr returns NULL, and the subsequent dereference leads to a crash.