Songxpuo

**Name of the Vulnerable Software and Affected Versions** NanoMQ version 0.17.2 **Description** A heap buffer overflow issue exists, which can be triggered by calling the function `nni msg get pub pid()` in the file message.c. This can lead to a denial of service attack. **Recommendations** For NanoMQ version 0.17.2, consider disabling the `nni msg get pub pid()` function as a temporary workaround until a patch is available. Restrict access to the message.c file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPMyWind version 5.6 **Description** A SQL injection issue allows a remote attacker to gain privileges via the delete function of the administrator management page. **Recommendations** For PHPMyWind version 5.6, update to a version that includes a fix for this issue, if available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.