MiracleLinux 4 : qpid-tools-0.14-6.AXS4, qpid-qmf-0.14-14.AXS4, qpid-cpp-0.14-22.AXS4, python-qpid-0.14-11.AXS4 (AXSA:2012-1014:04)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-1014:04 advisory. qpid-tools: Management and diagnostic tools for Apache Qpid brokers and clients. qpid-qmf-: An extensible management framework layered on Qpid messaging...

EUVD-2026-2145

Improper access control in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally...

CVE-2021-2145

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...

CVE-2024-2145

A vulnerability was found in SourceCodester Online Mobile Management Store 1.0. It has been classified as problematic. Affected is an unknown function of the file /endpoint/update-tracker.php. The manipulation of the argument firstname leads to cross site scripting. It is possible to launch the...

Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2025-2145)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHSA-2024:2145

creationtimestamp| type| source ---|---|--- 2025-08-30 12:19:45+00:00| seen| Telegram/gs9OFWv2ofZDctiBNL5SBVAG8rG0TyRMNKIKxEhZwXiPo 2025-08-30 12:19:46+00:00| seen| Telegram/X5EWNIkqnUn5L-oEfNnKyGwZv9NJkUBysYtMyCK8XHHsMc 2025-08-30 12:19:48+00:00| seen|...

CVE-2023-2145

A vulnerability was found in Campcodes Online Thesis Archiving System 1.0. It has been classified as critical. Affected is an unknown function of the file projectspercurriculum.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The explo...

CVE-2005-2145

The kernel driver in Prevx Pro 2005 1.0 does not verify the source of certain messages, which allows local users to bypass protection by sending certain messages to the driver, as demonstrated by sending an "allow" message to bypass a warning message...

CentOS 7 : runc (RHSA-2021:2145)

The remote CentOS Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:2145 advisory. - runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multip...

RHEL 6 : mod_auth_mellon (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - modauthmellon: open redirect in logout url when using URLs with backslashes CVE-2019-3877 - The...

RHEL 7 : mod_auth_mellon (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - modauthmellon: Cross-site session transfer vulnerability CVE-2017-6807 - The amreadpostdata function in...

RHEL 6 : mod_auth_mellon (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - modauthmellon: open redirect in logout url when using URLs with backslashes CVE-2019-3877 - modauthmellon...

Oracle Linux 9 : libX11 (ELSA-2024-2145)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2145 advisory. - Fix CVE-2023-43785: out-of-bounds memory access in XkbReadKeySyms - Fix CVE-2023-43786: stack exhaustion from infinite recursion in PutSubImage Tenab...

RHEL 9 : libX11 (RHSA-2024:2145)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2145 advisory. The libX11 packages contain the core X11 protocol client library. Security Fixes: libX11: out-of-bounds memory access in XkbReadKeySyms...

CVE-2024-2145

creationtimestamp| type| source ---|---|--- 2024-03-03 15:22:09+00:00| seen| https://t.me/ctinow/198787 2024-03-03 15:31:43+00:00| seen| https://t.me/ctinow/198791...

CVE-2024-2145

A vulnerability was found in SourceCodester Online Mobile Management Store 1.0. It has been classified as problematic. Affected is an unknown function of the file /endpoint/update-tracker.php. The manipulation of the argument firstname leads to cross site scripting. It is possible to launch the...

CVE-2024-2145

CVE-2024-2145 affects SourceCodester Online Mobile Management Store 1.0. The vulnerability is a Cross-Site Scripting issue in an unknown function of /endpoint/update-tracker.php, triggered by manipulating the firstname parameter. It can be exploited remotely, and the exploit has been disclosed pu...

CVE-2024-2145 SourceCodester Online Mobile Management Store update-tracker.php cross site scripting

A vulnerability was found in SourceCodester Online Mobile Management Store 1.0. It has been classified as problematic. Affected is an unknown function of the file /endpoint/update-tracker.php. The manipulation of the argument firstname leads to cross site scripting. It is possible to launch the...

Oracle Linux 7 : gvfs (ELSA-2019-2145)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-2145 advisory. 1.36.2-3 - Force NT1 protocol version for workgroup support 1619719 1.36.2-2 - Prevent spawning new daemons if outgoing operation exists 1632960 - CVE-2019-3827...

Amazon Linux 2 : lynx (ALAS-2023-2145)

The version of lynx installed on the remote host is prior to 2.8.9-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2145 advisory. Lynx through 2.8.9 mishandles the userinfo subcomponent of a URI, which allows remote attackers to discover cleartext credentials...