Astra Linux - уязвимость в mariadb-10.3

MariaDB before 10.7.2 allowed applications to crash because it did not recognize that SELECTLEX::nestlevel is local to each VIEW...

CVE-2026-2414

Authorization bypass through User-Controlled key vulnerability in HYPR Server allows Privilege Escalation.This issue affects Server: from 9.5.2 before 10.7.2...

CVE-2026-2414

Authorization bypass through User-Controlled key vulnerability in HYPR Server allows Privilege Escalation.This issue affects Server: from 9.5.2 before 10.7.2...

HYPR Server 安全漏洞

HYPR Server is a server owned by HYPR Corporation. Versions of HYPR Server prior to 10.7.2 contained security vulnerabilities. These vulnerabilities stemmed from unauthorized access through user-controlled keys, which could lead to an increase in permissions...

PT-2026-28068

Authorization bypass through User-Controlled key vulnerability in HYPR Server allows Privilege Escalation.This issue affects Server: from 9.5.2 before 10.7.2...

Mattermost allows unauthorized channel member management through playbook runs

Mattermost versions 10.5.x = 10.5.5, 9.11.x = 9.11.15, 10.8.x = 10.8.0, 10.7.x = 10.7.2, 10.6.x = 10.6.5 fail to properly enforce channel member management permissions in playbook runs, allowing authenticated users without the 'Manage Channel Members' permission to add or remove users from public...

BIT-MARIADB-2021-46659

MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECTLEX::nestlevel is local to each VIEW...

mariadb: Crash executing query with VIEW, aggregate and subquery

MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECTLEX::nestlevel is local to each VIEW...

MariaDB Multiple Vulnerabilities (Feb 2022) - Windows

MariaDB is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb"; if description...

CVE-2021-46659

MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECTLEX::nestlevel is local to each VIEW...

CVE-2021-46659

Disclaimer: This data contains information about vulnerable...

CVE-2021-46659

MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECTLEX::nestlevel is local to each VIEW...

CVE-2018-10379

GitLab CE/EE (GitLab) before versions 10.5.8, 10.6.x before 10.6.5, and 10.7.x before 10.7.2 contain a persistent XSS in the Move Issue feature. The vulnerability arises from improper sanitization in the Move Issue UI, allowing stored script injection via issue fields. Impact is conditional on in...

Apple Mac OS X PNG文件MediaVideo处理缓冲区溢出漏洞

BUGTRAQ ID: 51814 CVE ID: CVE-2011-3460 Mac OS是一套运行于苹果的Macintosh系列电脑上的操作系统。 Apple Mac OS X在为.png格式编码的视频解码分配空间时会触发特定的漏洞，计算surface的空间时，应用会信任MediaVideo标头中的比特位深。在解码过程中，应用会在surface的边界之外写入，在实现上存在缓冲区溢出漏洞，成功利用后可允许攻击者执行任意代码。受影响版本：Mac OS X 10.6.8 、Mac OS X Server 10.6.8、Mac OS X 10.7-10.7.2、Mac OS X Server...

Apple Safari WebKit Private Browsing模式Cookie限制绕过漏洞

CVE ID: CVE-2011-3242 Safari是苹果计算机的最新作业系统Mac OS X中的浏览器，使用了KDE的KHTML作为浏览器的运算核心。 Safari在Private Browsing模式中处理cookie时存在逻辑错误，即使"Block cookies"设置为“Always”也会设置cookie。 Apple Mac OS X 10.6.8 Apple Mac OS X Server v10.6.8 Apple OS X Lion 10.7.2 Apple OS X Lion Server 10.7.2 厂商补丁： Apple -----...

Format string

Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS X before 10.7.2 allows local users to gain privileges via a crafted name of an executable file...

CVE-2011-0231

CVE-2011-0231 affects CFNetwork in Apple Mac OS X before 10.7.2, where cookie-storage policy handling could allow remote web servers to track users via cookies (synchronization issue). The vulnerability is addressed in OS X Lion v10.7.2 via Security Update 2011-006 and accompanying OS X Lion upda...