Astra Linux - уязвимость в node-sha.js

There is a vulnerability in input validation in sha.js that allows for manipulation of input data. This issue affects sha.js version 2.4.11...

EUVD-2025-25403

Malicious code in bioql PyPI...

SUSE CVE-2025-9288

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

CVE-2025-9288

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

CVE-2025-9288

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

UBUNTU-CVE-2025-9288

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

CVE-2025-9288 Missing type checks leading to hash rewind and passing on crafted data

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

CVE-2025-9288 Missing type checks leading to hash rewind and passing on crafted data

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

CVE-2025-9288

The CVE-2025-9288 issue is an Improper Input Validation vulnerability in sha.js (node-sha.js) with incomplete type checks that can lead to Input Data Manipulation. Public reports tie the vulnerability to sha.js up to version 2.4.11. Debian advisories (DSA-6002-1, DLA-4302-1, DLA-4291-1) describe ...

CVE-2025-9288

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

sha.js 安全漏洞

sha.js is an open source application from Browserify. A security vulnerability exists in sha.js version 2.4.11 and earlier, which stems from improper input validation and could lead to tampering of input data...

CVE-2022-43222

open5gs v2.4.11 was discovered to contain a memory leak in the component src/smf/pfcp-path.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted PFCP packet...

WordPress Plugin Slick Social Share Buttons Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

PT-2023-32059 · WordPress · Five Star Restaurant Menu/Food Ordering

Name of the Vulnerable Software and Affected Versions: Five Star Restaurant Menu and Food Ordering WordPress plugin versions prior to 2.4.11 Description: The issue allows unauthenticated users to perform PHP Object Injection via an AJAX action by unserializing user input. This can be exploited wh...

SUSE CVE-2011-3481

The indexgetids function in index.c in imapd in Cyrus IMAP Server before 2.4.11, when server-side threading is enabled, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted References header in an e-mail message...

Open5GS 安全漏洞

Open5GS is a C open source implementation of 5G Core and Epc, the core network of the Lte/Nr network. version v2.4.11 of Open5GS suffers from a denial of service vulnerability that stems from the failure or inability to free dynamically allocated heap memory in src/smf/pfcp-path.c. An attacker...

Moodle cross-site scripting (XSS) vulnerability

Cross-site scripting XSS vulnerability in mod/feedback/mapcourse.php in the Feedback module in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allows remote authenticated users to inject arbitrary web script or HTML by leveraging the mod/feedback:mapcourse...

GLSA-202105-07 : Telegram: Security bypass

The remote host is affected by the vulnerability described in GLSA-202105-07 Telegram: Security bypass It was discovered that Telegram failed to invalidate a recently active session. Impact : Please review the referenced CVE identifiers for details. Workaround : There is no known workaround at th...

WordPress Plugin Helpful 2.4.11 - SQL Injection

Title: Helpful 2.4.11 Sql Injection - Wordpress Plugin Version : 2.4.11 Software Link : https://wordpress.org/plugins/helpful/ Date of found: 10.04.2019 Author: Numan Türle core/Core.class.php // Ajax requests: pro addaction 'wpajaxhelpfulajaxpro', array $this, 'helpfulajaxpro' ; // set args for...

Wireshark Security Updates (wnpa-sec-2019-05) - Mac OS X

Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...