CVE-2026-25957

Cube is a semantic layer for building data applications. From 1.1.17 to before 1.5.13 and 1.4.2, it is possible to make the entire Cube API unavailable by submitting a specially crafted request to a Cube API endpoint. This vulnerability is fixed in 1.5.13 and 1.4.2...

CVE-2026-0945

Privilege Defined With Unsafe Actions vulnerability in Drupal Role Delegation allows Privilege Escalation.This issue affects Role Delegation: from 1.3.0 before 1.5.0...

CVE-2026-0945

Privilege Defined With Unsafe Actions vulnerability in Drupal Role Delegation allows Privilege Escalation.This issue affects Role Delegation: from 1.3.0 before 1.5.0...

CVE-2026-0945 Role Delegation - Moderately critical - Access bypass - SA-CONTRIB-2026-002

Privilege Defined With Unsafe Actions vulnerability in Drupal Role Delegation allows Privilege Escalation.This issue affects Role Delegation: from 1.3.0 before 1.5.0...

EUVD-2012-2231

Malware in sbrugna...

EUVD-2006-0809

Malware in sbrugna...

EUVD-2012-1088

Malware in sbrugna...

EUVD-2016-10635

Malware in sbrugna...

EUVD-2014-0174

Malware in sbrugna...

Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing malformed Physical Scale (aka sCAL) chunks.

...

RHEL 6 : dbus (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dbus: denial of service when forwarding invalid file descriptors CVE-2014-3533 - The dbus-daemon in D-Bus...

CVE-2023-29132

Irssi 1.3.x and 1.4.x before 1.4.4 has a use-after-free because of use of a stale special collector reference. This occurs when printing of a non-formatted line is concurrent with printing of a formatted line...

KDAB Hotspot 竞争条件问题漏洞

KDAB Hotspot is an application for KDAB individual developers. Create a standalone GUI for performance data. A security vulnerability exists in KDAB Hotspot version 1.3.x and 1.4.1 and prior versions 1.4.x. The vulnerability stems from the presence of a race condition that can be exploited by an...

Apache HTTP Server SEoL (1.4.x <= x <= 2.0.x)

According to its version, Apache HTTP Server is between 1.4.x and 2.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

PT-2023-18607 · F5 · F5Os-A +1

Name of the Vulnerable Software and Affected Versions: F5OS-A versions 1.2.0 through 1.2.x F5OS-C versions 1.3.0 through 1.4.x Description: The issue allows for command injection when processing F5OS tenant file names. This may potentially lead to unauthorized access or control. No information is...

CVE-2021-4292

A vulnerability was found in OpenMRS Admin UI Module up to 1.4.x. It has been rated as problematic. This issue affects some unknown processing of the file omod/src/main/webapp/pages/metadata/privileges/privilege.gsp of the component Manage Privilege Page. The manipulation leads to cross site...

PT-2022-9030 · Openmrs · Openmrs Admin Ui Module

Name of the Vulnerable Software and Affected Versions: OpenMRS Admin UI Module versions up to 1.4.x Description: A problematic vulnerability has been found in the OpenMRS Admin UI Module, affecting the sendErrorMessage function of the AccountPageController.java file, part of the Account Setup...

PT-2022-26850 · Telos Alliance · Telos Alliance Omnia Mpx Node

Name of the Vulnerable Software and Affected Versions: Telos Alliance Omnia MPX Node versions 1.0.0 through 1.4. Description: An Insecure Direct Object Reference IDOR vulnerability in the password reset function allows attackers to arbitrarily change user and Administrator account passwords...

Typora fails to properly neutralize JavaScript code.

Overview Typora fails to properly neutralize JavaScript code CWE-116. Eiji Mori of Flatt Security Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact Opening a file with the affected product may lead to...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime may affect Tivoli Netcool Performance Manager for Wireless.

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 & 8 used by Tivoli Netcool Performance Manager for Wireless. Tivoli Netcool Performance Manager for Wireless has addressed the applicable CVEs.T hese issues were disclosed as part of the IBM Java SDK updates ti...