Alibaba Cloud Linux 3 : 0199: curl (ALINUX3-SA-2025:0199)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2025:0199 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-9086: 1. A cookie is set using the secure...

CVE-2020-0199

In TimeCheck::TimeCheckThread::threadLoop of TimeCheck.cpp, there is a possible use-after-free due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

Linux Distros Unpatched Vulnerability : CVE-2013-0199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default LDAP ACIs in FreeIPA 3.0 before 3.1.2 do not restrict access to the 1 ipaNTTrustAuthIncoming and 2 ipaNTTrustAuthOutgoing attributes, which allow...

CVE-2025-0199

creationtimestamp| type| source ---|---|--- 2025-01-04 01:23:00+00:00| seen| https://t.me/cvedetector/14249...

CVE-2025-0199

A vulnerability, which was classified as critical, was found in code-projects Point of Sales and Inventory Management System 1.0. Affected is an unknown function of the file /user/minuscart.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack...

CVE-2025-0199 code-projects Point of Sales and Inventory Management System minus_cart.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Point of Sales and Inventory Management System 1.0. Affected is an unknown function of the file /user/minuscart.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack...

CVE-2025-0199

CVE-2025-0199 affects code-projects Point of Sales and Inventory Management System 1.0, with an SQL injection in /user/minus_cart.php triggered by manipulating the id parameter. The vulnerability is described as remote-exploitable and publicly disclosed. Connected sources (NVD, Red Hat, CVE listi...

CVE-2025-0199 code-projects Point of Sales and Inventory Management System minus_cart.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Point of Sales and Inventory Management System 1.0. Affected is an unknown function of the file /user/minuscart.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack...

RHEL 8 : 10.6_pki-servlet-container (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - tomcat: Apache Tomcat HTTP/2 DoS CVE-2019-0199 Note that Nessus has not tested for this issue but has instead relie...

Apache Tomcat 8.5.0 < 8.5.38

The version of Tomcat installed on the remote host is prior to 8.5.38. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.5.38security-8 advisory. - The HTTP/2 implementation in Apache Tomcat 9.0.0.M1 to 9.0.14 and 8.5.0 to 8.5.37 accepted streams with excessi...

RHEL 8 : tomcat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tomcat: EncryptInterceptor documentation mistake CVE-2022-29885 - The HTTP/2 implementation in Apache...

FreeBSD : Gitlab -- Vulnerabilities (b2caae55-dc38-11ee-96dc-001b217b3468)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the b2caae55-dc38-11ee-96dc-001b217b3468 advisory. - An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior...

CVE-2024-0199

creationtimestamp| type| source ---|---|--- 2024-03-07 02:26:58+00:00| seen| https://t.me/ctinow/201998 2024-03-07 02:27:15+00:00| seen| https://t.me/ctinow/202010 2025-04-16 15:55:53+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12072...

CVE-2024-0199

An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior to 16.7.7, 16.7.6 prior to 16.8.4, and 16.8.3 prior to 16.9.2. An attacker could bypass CODEOWNERS by utilizing a crafted payload in an old feature branch to perform malicious actions...

CVE-2024-0199

Removed by vendor...

CVE-2024-0199 Incorrect Authorization in GitLab

An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior to 16.7.7, 16.7.6 prior to 16.8.4, and 16.8.3 prior to 16.9.2. An attacker could bypass CODEOWNERS by utilizing a crafted payload in an old feature branch to perform malicious actions...

CVE-2024-0199 Incorrect Authorization in GitLab

An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior to 16.7.7, 16.7.6 prior to 16.8.4, and 16.8.3 prior to 16.9.2. An attacker could bypass CODEOWNERS by utilizing a crafted payload in an old feature branch to perform malicious actions...

CVE-2024-0199

CVE-2024-0199 is an authorization bypass in GitLab. Affected are versions 11.3 prior to 16.7.7, 16.7.6 prior to 16.8.4, and 16.8.3 prior to 16.9.2, where an attacker could bypass CODEOWNERS by sending a crafted payload in an old feature branch to perform malicious actions. The provided sources co...

GitLab 11.3 < 16.7.7 / 16.8 < 16.8.4 / 16.9 < 16.9.2 (CVE-2024-0199)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior to 16.7.7, 16.7.6 prior to 16.8.4, and 16.8.3 prior to 16.9.2. An attacker could bypass CODEOWNERS by...

Important Photon OS Security Update - PHSA-2024-5.0-0199

Updates of 'runc', 'ansible' packages of Photon OS have been released...