Sqlite

Sqlite

68 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 4.42%
  • Veröffentlicht 03.07.2015 02:00:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Multiple buffer overflows in the printf functionality in SQLite, as used in Apple iOS before 8.4 and OS X before 10.10.4, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.

  • EPSS 5.53%
  • Veröffentlicht 24.04.2015 17:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service (integer overflow and stack-b...

  • EPSS 4.85%
  • Veröffentlicht 24.04.2015 17:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement comparison operators, which allows context-dependent attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact v...

  • EPSS 4.85%
  • Veröffentlicht 24.04.2015 17:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other im...

Exploit
  • EPSS 3.37%
  • Veröffentlicht 03.04.2009 18:30:00
  • Zuletzt bearbeitet 16.06.2026 23:02:31

Multiple directory traversal vulnerabilities in LightNEasy "no database" (aka flat) version 1.2.2, and possibly SQLite version 1.2.2, allow remote attackers to read arbitrary files via a .. (dot dot) in the page parameter to (1) index.php and (2) Lig...

Exploit
  • EPSS 2.9%
  • Veröffentlicht 03.04.2009 18:30:00
  • Zuletzt bearbeitet 16.06.2026 23:02:32

thumbsup.php in Thumbs-Up 1.12, as used in LightNEasy "no database" (aka flat) and SQLite 1.2.2 and earlier, allows remote attackers to copy, rename, and read arbitrary files via directory traversal sequences in the image parameter with a modified ca...

Exploit
  • EPSS 3.47%
  • Veröffentlicht 03.04.2009 18:30:00
  • Zuletzt bearbeitet 16.06.2026 23:02:32

SQL injection vulnerability in LightNEasy/lightneasy.php in LightNEasy SQLite 1.2.2 and earlier allows remote attackers to inject arbitrary PHP code into comments.dat via the dlid parameter to index.php.

Exploit
  • EPSS 1.27%
  • Veröffentlicht 03.04.2009 18:30:00
  • Zuletzt bearbeitet 16.06.2026 23:02:31

Multiple cross-site scripting (XSS) vulnerabilities in LightNEasy "no database" (aka flat) version 1.2.2, and possibly SQLite version 1.2.2, allow remote attackers to inject arbitrary web script or HTML via the page parameter to (1) index.php and (2)...