MAL-2025-19048 Malicious code in dzsagbkorawrpkwehtvm (npm)

The package dzsagbkorawrpkwehtvm was found to contain malicious code...

CVE-2020-19048

Cross Site Scripting XSS in MyBB v1.8.20 allows remote attackers to inject arbitrary web script or HTML via the "Title" field found in the "Add New Forum" page by doing an authenticated POST HTTP request to '/Upload/admin/index.php?module=forum-management=add'...

CVE-2019-19048

creationtimestamp| type| source ---|---|--- 2024-02-23 09:11:20+00:00| seen| https://t.me/ctinow/191551...

SUSE CVE-2019-19048

A memory leak in the cryptoreportstat function in drivers/virt/vboxguest/vboxguestutils.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory consumption by triggering copyformuser failures, aka CID-e0b0cb938864...

MyBB <= 1.8.20 Multiple XSS Vulnerabilities

MyBB is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mybb:mybb";...

CVE-2020-19048

creationtimestamp| type| source ---|---|--- 2021-08-31 18:33:44+00:00| seen| https://t.me/cibsecurity/28092...

CVE-2020-19048

Cross Site Scripting XSS in MyBB v1.8.20 allows remote attackers to inject arbitrary web script or HTML via the "Title" field found in the "Add New Forum" page by doing an authenticated POST HTTP request to '/Upload/admin/index.php?module=forum-management&action=add'...

CVE-2020-19048

CVE-2020-19048 : MyBB 1.8.20 is vulnerable to a Cross Site Scripting (XSS) flaw in the Add New Forum feature. An authenticated attacker can inject arbitrary script/HTML via the Title field when making a POST to /Upload/admin/index.php?module=forum-management&action=add, potentially affecting the ...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1158)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1158)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the...

Ubuntu: Security Advisory (USN-4208-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4208-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4208-1 advisory. Jann Horn discovered that the OverlayFS and ShiftFS Drivers in the Linux kernel did not properly handle reference counting during memory mapping operatio...

CVE-2019-19048

A memory leak in the cryptoreportstat function in drivers/virt/vboxguest/vboxguestutils.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory consumption by triggering copyformuser failures, aka CID-e0b0cb938864...

CVE-2019-19048

A memory leak in the cryptoreportstat function in drivers/virt/vboxguest/vboxguestutils.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory consumption by triggering copyformuser failures, aka CID-e0b0cb938864...

CVE-2019-19048

CVE-2019-19048 corresponds to a memory leak in the Linux kernel’s crypto_reportstat() path inside drivers/virt/vboxguest/vboxguest_utils.c, before 5.3.9. The issue arises when copy_form_user() fails, enabling a denial of service via memory exhaustion. The connected Nessus advisories (Unity Linux ...

Red Hat libvirt Access Control Error Vulnerability (CNVD-2019-19048)

Red Hat libvirt is a Linux API for implementing Linux virtualization features from Red Hat, Inc. It supports a variety of Hypervisors, including Xen and KVM, as well as QEMU and a number of virtual products for other operating systems. An access control error vulnerability exists in Red Hat...

@levi-m/ide-kit (=10.1.0-beta.14), dltsign-mobile (=0.1.0) +6 more potentially affected by CVE-2018-19048 via simditor (>=2.1.14 <=2.3.21)

simditor NPM version =2.1.14, =2.0.2, =1.0.1, =2.0.4, =0.1.7, =1.1.24 Source cves: CVE-2018-19048 Source advisory: OSV:GHSA-8V67-X8Q5-3X3G...

CVE-2018-19048

Simditor up to version 2.3.21 is affected by a DOM XSS (attackable via an onload attribute in a malformed SVG element). The underlying issue is improper handling/sanitization of SVG onload events, enabling injection of arbitrary JavaScript in the user’s browser. Mitigation: upgrade to version 2.3...