Critical Photon OS Security Update - PHSA-2026-4.0-0976

Updates of 'ImageMagick', 'ruby' packages of Photon OS have been released...

de.arbeitsagentur.opdt:keycloak-cassandra-model-tests (>=2.5.6-24.0 <=5.4.3-26.2), io.kokuwa.keycloak:keycloak-event-metrics (>=0.1.0 <=1.0.0) +21 more potentially affected by CVE-2026-0976 via org.keycloak:keycloak-quarkus-server (>=12.0.0 <=26.2.5)

org.keycloak:keycloak-quarkus-server MAVEN version =12.0.0, =2.5.6-24.0, =0.1.0, =26.1.0, =26.1.0, =26.1.0, =26.1.0, =26.1.0, =26.1.0, =26.1.0, =26.2.0, =26.2.0, =26.1.0, =26.1.0, =26.1.0, =26.1.0, =26.2.5 and more Source cves: CVE-202...

de.arbeitsagentur.opdt:keycloak-cassandra-model-tests (>=4.1.0-26.0 <=5.4.6), net.optionfactory.keycloak:optionfactory-keycloak-providers (>=8.1 <=9.0) +24 more potentially affected by CVE-2026-0976 via org.keycloak:keycloak-quarkus-server (>=26.0.0 <=26.5.1)

org.keycloak:keycloak-quarkus-server MAVEN version =26.0.0, =4.1.0-26.0, =8.1, =26.3.0, =26.1.0, =26.4.0, =26.1.0, =26.1.0, =26.1.0, =26.1.0, =26.1.0, =26.4.0, =26.1.0, =26.2.0, =26.2.0, =26.1.0, =26...

ECHO-0976-1948-FDF3

Bulletin has no description...

CVE-2020-0976

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-0972, CVE-2020-0975, CVE-2020-0977...

CVE-2013-0976

IOAcceleratorFamily in Apple Mac OS X before 10.8.3 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted graphics image...

CVE-2024-0976

creationtimestamp| type| source ---|---|--- 2025-03-08 04:35:52+00:00| seen| Telegram/KWPILi7orKvzJPDbn0378kfclf9XdZK4nYlRJuCCUSaWqdiU...

CVE-2023-0976

creationtimestamp| type| source ---|---|--- 2025-01-06 21:37:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/249...

CVE-2024-0976

The CVE concerns WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce (WordPress) up to version 3.1.41, which is vulnerable to Reflected Cross-Site Scripting due to insufficient input sanitization and output escaping in a plugin parameter. Unauthenticated attackers cou...

RHEL 7 : firefox (RHSA-2024:0976)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:0976 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

CentOS 7 : firefox (RHSA-2024:0976)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:0976 advisory. - When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read...

WordPress WP Event Manager Plugin <= 3.1.41 is vulnerable to Cross Site Scripting (XSS)

Software WP Event Manager Type Plugin Vulnerable versions = 3.1.41 Fixed in 3.1.42 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0976 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 31df306c3173 Credits Maksim Kosenko...

CVE-2023-0976

CVE-2023-0976 describes a local command-injection in Trellix Agent (TA) for macOS prior to version 5.7.9. The flaw lets a local attacker place an arbitrary file into the /Library/Trellix/Agent/bin/ directory, with the file being executed via the TA deployment feature in the System Tree. The vulne...

SUSE CVE-2022-0976

Heap buffer overflow in GPU in Google Chrome prior to 99.0.4844.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

CVE-2022-0976

Heap buffer overflow in GPU in Google Chrome prior to 99.0.4844.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

CVE-2022-0976

Heap buffer overflow in GPU in Google Chrome prior to 99.0.4844.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

CVE-2022-0976

CVE-2022-0976 describes a heap buffer overflow in the GPU component of Google Chrome up to version 99.0.4844.74 (prior to that build). A remote attacker could potentially exploit heap corruption via a crafted HTML page, with impact on confidentiality, integrity, and availability as indicated by t...

GHSA-V358-RVXR-WFFX Silverstripe XSS Vulnerabilities

Multiple cross-site scripting XSS vulnerabilities in SilverStripe 2.3.x before 2.3.13 and 2.4.x before 2.4.7 allow remote attackers to inject arbitrary web script or HTML via 1. a crafted string to the AbsoluteLinks 1. BigSummary 1. ContextSummary 1. EscapeXML 1. FirstParagraph 1. FirstSentence 1...

Mageia: Security Advisory (MGASA-2022-0107)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 15 Security Update : chromium (openSUSE-SU-2022:0085-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0085-1 advisory. - Use after free in Blink Layout. CVE-2022-0971 - Use after free in Extensions. CVE-2022-0972 - Use after free in Safe Browsing...