GHSA-599V-H3Q5-G6R9 Pimcore Cross-site Scripting (XSS) vulnerability in DataObject datetime fields

Impact This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account through the stolen cookie or redirect users to other malicious sites. Patches Update to version 10.6.8 or apply this patch manually...

CVE-2023-4453

Cross-site Scripting XSS - Reflected in GitHub repository pimcore/pimcore prior to 10.6.8...

Pimcore 跨站脚本漏洞

Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates applications for Web content management, e-commerce frameworks and product information management. A cross-site scripting vulnerability exist...

SUSE-SU-2022:2561-1 Security update for mariadb

This update for mariadb fixes the following issues: - Added mariadb-galera jscSLE-22245 Update to 10.6.8 bsc1199928: - CVE-2021-46669 bsc1199928 - CVE-2022-27376 bsc1198628 - CVE-2022-27377 bsc1198603 - CVE-2022-27378 bsc1198604 - CVE-2022-27379 bsc1198605 - CVE-2022-27380 bsc1198606 -...

MariaDB DoS Vulnerability (MDEV-26412) - Windows

MariaDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

MariaDB DoS Vulnerability (MDEV-26419) - Windows

MariaDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

MariaDB DoS Vulnerability (MDEV-26047 - 2) - Windows

MariaDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

MariaDB Multiple Use-After-Free Vulnerabilities (MDEV-28099) - Linux

MariaDB is prone to multiple use-after-free vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

MariaDB DoS Vulnerability (MDEV-28080) - Linux

MariaDB is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

MariaDB Use-After-Free Vulnerability (MDEV-28093) - Windows

MariaDB is prone to a use-after-free vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if...

CVE-2022-27456 affecting package mariadb for versions less than 10.6.8-1

CVE-2022-27456 affecting package mariadb for versions less than 10.6.8-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-27445 affecting package mariadb for versions less than 10.6.8-1

CVE-2022-27445 affecting package mariadb for versions less than 10.6.8-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-27377 affecting package mariadb for versions less than 10.6.8-1

CVE-2022-27377 affecting package mariadb for versions less than 10.6.8-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-27387 affecting package mariadb for versions less than 10.6.8-1

CVE-2022-27387 affecting package mariadb for versions less than 10.6.8-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-27383 affecting package mariadb for versions less than 10.6.8-1

CVE-2022-27383 affecting package mariadb for versions less than 10.6.8-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-27449 affecting package mariadb for versions less than 10.6.8-1

CVE-2022-27449 affecting package mariadb for versions less than 10.6.8-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-27381 affecting package mariadb for versions less than 10.6.8-1

CVE-2022-27381 affecting package mariadb for versions less than 10.6.8-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-27458 affecting package mariadb for versions less than 10.6.8-1

CVE-2022-27458 affecting package mariadb for versions less than 10.6.8-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-27451 affecting package mariadb for versions less than 10.6.8-1

CVE-2022-27451 affecting package mariadb for versions less than 10.6.8-1. An upgraded version of the package is available that resolves this issue...

AZL-9414 CVE-2022-27451 affecting package mariadb for versions less than 10.6.8-1

MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/fieldconv.cc...