WordPress Personal Dictionary <1.3.4 - Blind SQL Injection

WordPress Personal Dictionary plugin before 1.3.4 contains a blind SQL injection vulnerability. The plugin fails to properly sanitize user-supplied POST data before being interpolated in an SQL statement and executed. An attacker can possibly obtain sensitive information, modify data, and/or...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iio: accel: kxcjk-1013: Fixed a possible memory leak in the probe function by removing the data-dreadytrig condition. When the ACPI type is ACPISMO8500, data-dreadytrig will not be set, and the memory allocated by...

Important Photon OS Security Update - PHSA-2026-4.0-1013

Updates of 'expat' packages of Photon OS have been released...

MiracleLinux 4 : firefox-10.0.10-1.0.1.AXS4, xulrunner-10.0.10-1.0.1.AXS4 (AXSA:2012-1013:06)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-1013:06 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. XULRunner is a Mozilla runtime packag...

MiracleLinux 9 : thunderbird-128.7.0-1.el9_5.ML.1 (AXSA:2025-9664:04)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-9664:04 advisory. firefox: thunderbird: Memory safety bugs fixed in Firefox 135, Thunderbird 135, Firefox ESR 128.7, and Thunderbird 128.7 CVE-2025-1017 firefox:...

MiracleLinux 8 : firefox-128.7.0-1.el8_10.ML.1 (AXSA:2025-9662:06)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2025-9662:06 advisory. firefox: thunderbird: Memory safety bugs fixed in Firefox 135, Thunderbird 135, Firefox ESR 128.7, and Thunderbird 128.7 CVE-2025-1017 firefox:...

EUVD-2026-1013

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in VanKarWai Calafate calafate allows PHP Local File Inclusion.This issue affects Calafate: from n/a through = 1.7.7...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988939)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988939 advisory. In the Linux kernel, the following vulnerability has been resolved: iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove When ACPI type is ACPISMO850...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987122)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987122 advisory. In the Linux kernel, the following vulnerability has been resolved: iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove When ACPI type is ACPISMO850...

Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to stack overflows due to the unixODBC package (CVE-2024-1013)

Summary unixODBC is used by DataStage on Cloud Pak for Data as part of database communication. Vulnerability Details CVEID:CVE-2024-1013 DESCRIPTION: An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue...

Linux Distros Unpatched Vulnerability : CVE-2024-1013

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go...

Linux Distros Unpatched Vulnerability : CVE-2021-47499

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove When ACPI type is ACPISMO8500, the data-dreadytrig will not be set, the memory allocated by...

NewStart CGSL MAIN 7.02 : unixODBC Vulnerability (NS-SA-2025-0116)

The remote NewStart CGSL host, running version MAIN 7.02, has unixODBC packages installed that are affected by a vulnerability: - An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go unnoticed on...

CVE-2021-1013

In checkExistsAndEnforceCannotModifyImmutablyRestrictedPermission of PermissionManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no...

CVE-2024-1013 vulnerabilities

Vulnerabilities for packages: unixodbc...

Azure Linux 3.0 Security Update: unixODBC (CVE-2024-1013)

The version of unixODBC installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1013 advisory. - An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 byte...

Linux Distros Unpatched Vulnerability : CVE-2025-1013

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A race condition could have led to private browsing tabs being opened in normal browsing windows. This could have resulted in a potential privacy leak. This...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

RHEL 8 : thunderbird (RHSA-2025:1340)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:1340 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Memory safety bugs fixed in Firefox 135...

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2025:0391-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0391-1 advisory. MFSA 2025-09 CVE-2025-1009 bmo1936613 Use-after-free in XSLT CVE-2025-1010 bmo1936982 Use-after-free in Custom Highlight CVE-2025-1011 bmo19364...