BELL-CVE-2026-23431 CVE-2026-23431 does not affect BellSoft software

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2026-23431

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spi: amlogic-spisg: Fix memory leak in amlspisgprobe In amlspisgprobe, ctlr is allocated by spialloctarget/spiallochost, but fails to call spicontrollerput in...

DEBIAN-CVE-2026-23431

In the Linux kernel, the following vulnerability has been resolved: spi: amlogic-spisg: Fix memory leak in amlspisgprobe In amlspisgprobe, ctlr is allocated by spialloctarget/spiallochost, but fails to call spicontrollerput in several error paths. This leads to a memory leak whenever the driver...

CVE-2025-23431

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in khaninejad Envato Affiliater envato-affiliater allows Reflected XSS.This issue affects Envato Affiliater: from n/a through = 1.2.4...

CVE-2025-23431

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in khaninejad Envato Affiliater envato-affiliater allows Reflected XSS.This issue affects Envato Affiliater: from n/a through = 1.2.4...

CVE-2025-23431 WordPress Envato Affiliater plugin <= 1.2.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in khaninejad Envato Affiliater envato-affiliater allows Reflected XSS.This issue affects Envato Affiliater: from n/a through = 1.2.4...

CVE-2024-23431

creationtimestamp| type| source ---|---|--- 2025-01-01 00:19:03+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lenbyrmefc2a...

CVE-2023-23431

creationtimestamp| type| source ---|---|--- 2023-12-29 03:26:13+00:00| seen| https://t.me/ctinow/160282 2023-12-30 01:30:53+00:00| seen| https://t.me/cibsecurity/73855 2024-01-20 20:21:48+00:00| seen| https://t.me/ctinow/170715...

CVE-2023-23431

Some Honor products are affected by signature management vulnerability, successful exploitation could cause the forged system file overwrite the correct system file...

CVE-2023-23431

CVE-2023-23431 affects some Honor products and is caused by a signature management vulnerability. An attacker with local access and low privileges could exploit it to forge a system file and overwrite the legitimate file, potentially impacting integrity and availability. The CVSS metrics assign a...

CVE-2022-23431

creationtimestamp| type| source ---|---|--- 2022-02-11 20:29:01+00:00| seen| https://t.me/cibsecurity/37316...

CVE-2022-23431

CVE-2022-23431 involves an improper boundary check in the RPMB ldfw component prior to SMR Feb-2022 Release 1, as described across multiple sources. The vulnerability allows arbitrary memory write and code execution. Relevant entries from NVD/Red Hat/NCSC-style advisories consistently reference t...

demo-joplin (>=1.0.1 <=1.0.8) potentially affected by CVE-2021-23431 via joplin (=0.10.93)

joplin NPM version =0.10.93 is affected by a known vulnerability. The following packages have a transitive dependency on joplin and may be impacted: - demo-joplin =1.0.1, =1.0.8 Source cves: CVE-2021-23431 Source advisory: OSV:GHSA-GJWP-7V3G-99PJ...

CVE-2021-23431

creationtimestamp| type| source ---|---|--- 2021-08-24 12:23:45+00:00| seen| https://t.me/cibsecurity/27755...

CVE-2021-23431

The package joplin before 2.3.2 are vulnerable to Cross-site Request Forgery CSRF due to missing CSRF checks in various forms...

CVE-2021-23431 Cross-site Request Forgery (CSRF)

The package joplin before 2.3.2 are vulnerable to Cross-site Request Forgery CSRF due to missing CSRF checks in various forms...

CVE-2021-23431

The CVE pertains to the open-source note-taking app joplin (pre-2.3.2) vulnerable to Cross-site Request Forgery (CSRF) caused by missing CSRF checks in various forms. Affected versions are prior to 2.3.2; no explicit exploit details are provided in the initial documents, only that the vulnerabili...

vesti.lv XSS vulnerability

Vulnerable URL: http://vesti.lv//search?q=" Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 23431 VIP website status:| Yes Check vesti.lv SSL connection:| Grade: F Coordinated Disclosure Timeline: Description|...

CVE-2024-23431

...