Mattermost allows unauthorized channel member management through playbook runs

Mattermost versions 10.5.x = 10.5.5, 9.11.x = 9.11.15, 10.8.x = 10.8.0, 10.7.x = 10.7.2, 10.6.x = 10.6.5 fail to properly enforce channel member management permissions in playbook runs, allowing authenticated users without the 'Manage Channel Members' permission to add or remove users from public...

WordPress plugin WP Booking Calendar 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

OPENSUSE-SU-2024:11648-1 libmariadbd-devel-10.6.5-3.1 on GA media

These are all security issues fixed in the libmariadbd-devel-10.6.5-3.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:11621-1 libmariadbd-devel-10.6.5-1.1 on GA media

These are all security issues fixed in the libmariadbd-devel-10.6.5-1.1 package on the GA media of openSUSE Tumbleweed...

BIT-MYSQL-CLIENT-2021-46667

MariaDB before 10.6.5 has a sqllex.cc integer overflow, leading to an application crash...

PT-2023-4112 · Pimcore · Pimcore

Name of the Vulnerable Software and Affected Versions: pimcore/pimcore versions prior to 10.6.4 pimcore/pimcore version 10.6.4 is not affected, the fixed version is 10.6.5 Description: The issue is related to SQL injection in the pimcore/pimcore GitHub repository. This is due to a lack of...

MariaDB DoS Vulnerability (MDEV-26556) - Linux

MariaDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

CVE-2022-27376

MariaDB Server v10.6.5 and below was discovered to contain an use-after-free in the component Itemargs::walkarg, which is exploited via specially crafted SQL statements...

MariaDB DoS Vulnerability (MDEV-26350) - Windows

MariaDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

MariaDB DoS Vulnerability (MDEV-25637, MDEV-22464) - Linux

MariaDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

ALPINE-CVE-2021-46667

MariaDB before 10.6.5 has a sqllex.cc integer overflow, leading to an application crash...

CVE-2021-46667

MariaDB before 10.6.5 has a sqllex.cc integer overflow, leading to an application crash...

Sophos Cyberoam UTM/NGFW XSS Vulnerability (Jun 2017)

Sophos Cyberoam UTM/NGFW is prone to a cross-site scripting XSS vulnerability. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program ...

OSX/Intel - setuid shell x86_64 - 51 bytes

No description provided by source. / Title: OSX/Intel - setuid shell x8664 - 51 bytes Date: 2010-11-25 Tested on: Mac OS X 10.6.5 - Darwin Kernel Version 10.5.0 Author: Dustin Schultz - twitter: @thexploit http://thexploit.com BITS 64 section .text global start start: a: mov r8b, 0x02 ; Unix clas...

Apple Mac OS X FlashPix文件CVE-2011-3222缓冲区溢出漏洞

Bugtraq ID: 50100 CVE ID：CVE-2011-3222 Apple Mac OS X是苹果公司发布的操作系统。 QuickTime处理FlashPix文件存在缓冲区溢出，构建特制的FLashPix文件可导致未明的应用程序终止或任意代码执行。 Apple Mac OS X Server 10.6.6 Apple Mac OS X Server 10.6.5 Apple Mac OS X Server 10.6.5 Apple Mac OS X Server 10.6.4 Apple Mac OS X Server 10.6.3 Apple Mac OS X Serve...

Apple Mac OS PackageKit Distribution脚本远程代码执行漏洞

BUGTRAQ ID: 45693 CVE ID: CVE-2010-4013 Mac OS X是苹果家族机器所使用的操作系统。 Mac OS X在“软件升级”检查期间处理distribution脚本时存在格式字符串错误，可造成内存破坏，在受影响的应用程序中执行任意代码或造成拒绝服务。 此漏洞源于PackageKit组件中的格式字符串错误。 Apple Mac OS X 10.6.5 Apple Mac OS X 10.6.4 Apple Mac OS X 10.6.3 Apple Mac OS X 10.6.2 Apple Mac OS X 10.6.1 Apple Mac OS X...

OS X 10.6.5 kernel crash upon wlan roaming with disabled mandatory MCS

During the buildup at the CCC 27c3 congress in Berlin we noticed several Apple Macbooks kernel paniced while connected to the wireless network. We identified the cause of this issue and we are able to reproduce this as well. It seems to be limited to the aluminum unibody Macbooks, running OS X...

OSX/Intel - setuid shell x86_64 - 51 bytes

OSX/Intel - setuid shell x8664 - 51 bytes. Shellcode exploit for osx platform / Title: OSX/Intel - setuid shell x8664 - 51 bytes Date: 2010-11-25 Tested on: Mac OS X 10.6.5 - Darwin Kernel Version 10.5.0 Author: Dustin Schultz - twitter: @thexploit http://thexploit.com BITS 64 section .text globa...

Design/Logic Flaw

Dovecot in Apple Mac OS X 10.6.5 10H574 does not properly manage memory for user names, which allows remote authenticated users to read the private e-mail of other persons in opportunistic circumstances via standard e-mail clients accessing a user's own mailbox, related to a "memory aliasing issu...

DEBIAN-CVE-2010-3798

Heap-based buffer overflow in xar in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted xar archive...