EUVD-2016-1858

Malware in sbrugna...

CVE-2021-1858

Processing a maliciously crafted image may lead to arbitrary code execution. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. An out-of-bounds write issue was addressed with improved bounds checking...

CVE-2002-1858

Oracle Oracle9i Application Server 1.0.2.2 and 9.0.2 through 9.0.2.0.1, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...

Linux Distros Unpatched Vulnerability : CVE-2014-1858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - init.py in f2py in NumPy before 1.8.1 allows local users to write to arbitrary files via a symlink attack on a temporary file. CVE-2014-1858 Note that Nessus...

CVE-2025-1858

creationtimestamp| type| source ---|---|--- 2025-03-03 09:35:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6166 2025-03-03 11:21:37+00:00| seen| https://t.me/cvedetector/19321...

CVE-2025-1858 Codezips Online Shopping Website success.php sql injection

A vulnerability classified as critical was found in Codezips Online Shopping Website 1.0. This vulnerability affects unknown code of the file /success.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the publi...

openSUSE Security Advisory (SUSE-SU-2024:1858-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for iSulad (EulerOS-SA-2024-1858)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 6 : numpy (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - numpy: crafted serialized object passed in numpy.load in pickle python module allows arbitrary code...

RHEL 7 : numpy (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - numpy: crafted serialized object passed in numpy.load in pickle python module allows arbitrary code...

WordPress Lightbox slider – Responsive Lightbox Gallery Plugin <= 1.9.9 is vulnerable to PHP Object Injection

Software Lightbox slider – Responsive Lightbox Gallery Type Plugin Vulnerable versions = 1.9.9 Fixed in 1.10.0 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2024-1858 Patch priority Medium CVSS severity Medium 5.4 Developer Claim ownership PSID c570605cfccd Credits...

CAN-2005-1858

This CVE affects FUSE (filesystem in userspace): FUSE 2.x before 2.3.0 fails to clear memory from unfilled pages after a read returns a short byte count, potentially allowing local users to disclose sensitive information. The Debian advisory (DSA-744-1) links CVE-2005-1858 to fuse and notes a fix...

Amazon Linux AMI : nss-softokn (ALAS-2023-1858)

The version of nss-softokn installed on the remote host is prior to 3.53.1-6.48. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1858 advisory. new tlsfuzzer code can still detect timing issues in RSA operations CVE-2023-4421 Tenable has extracted the preceding...

CVE-2023-1858

A vulnerability was found in SourceCodester Earnings and Expense Tracker App 1.0. It has been classified as problematic. This affects an unknown part of the file index.php. The manipulation of the argument page leads to information disclosure. It is possible to initiate the attack remotely. The...

CVE-2023-1858

CVE-2023-1858 affects SourceCodester Earnings and Expense Tracker App 1.0. The issue resides in an unspecified part of index.php where manipulating the page parameter leads to information disclosure. It can be exploited remotely. Connected sources corroborate the vulnerability in index.php with r...

Debian: Security Advisory (DLA-210-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux 2 : golang-github-godbus-dbus (ALAS-2022-1858)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1858 advisory. 2023-05-11: CVE-2022-1996 has changed status to NOT AFFECTED for this package and has been removed from this advisory. A flaw was found in golang. The HTTP/1 client accepted invalid...

CVE-2022-1858

Out of bounds read in DevTools in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to perform an out of bounds memory read via specific user interaction...

CVE-2022-1858

CVE-2022-1858 is a Chrome/Chromium DevTools vulnerability: an out-of-bounds memory read in DevTools could be triggered by specific user interaction, leading to potential data exposure. Affected product is Google Chrome through versions prior to 102.0.5005.61 (Chromium/DevTools codebase). The issu...

Fedora: Security Advisory for chromium (FEDORA-2022-bcb096166f)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...