24 matches found
CVE-2026-25204
creationtimestamp| type| source ---|---|--- 2026-04-13 02:38:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjdtjoqwny2r...
CVE-2026-25204
Deserialization of untrusted data vulnerability in Samsung Open Source Escargot Java Script allows denial of service condition via process abort. This issue affects escarogt prior to commit hash 97e8115ab1110bc502b4b5e4a0c689a71520d335...
CVE-2018-25204
creationtimestamp| type| source ---|---|--- 2026-03-31 02:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mid5lf5jud2f...
CVE-2018-25204
The CVE-2018-25204 entry describes an SQL injection in Library CMS 1.0 where unauthenticated attackers can bypass authentication by injecting SQL into the username field of the admin login. The vulnerability stems from improper handling of the username input, allowing boolean-based blind SQL payl...
Azure Linux 3.0 Security Update: gh (CVE-2025-25204)
The version of gh installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-25204 advisory. - gh is GitHub's official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain...
Fedora: Security Advisory (FEDORA-2025-3d0ada20e1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux Distros Unpatched Vulnerability : CVE-2025-25204
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gh is GitHub's official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact...
CVE-2022-25204
Jenkins Doktor Plugin 0.4.1 and earlier implements functionality that allows agent processes to render files on the controller as Markdown or Asciidoc, and error messages allow attackers able to control agent processes to determine whether a file with a given name exists...
CVE-2021-25204
Cross-site scripting XSS vulnerability in SourceCodester E-Commerce Website v 1.0 allows remote attackers to inject arbitrary web script or HTM via the subject field to feedbackprocess.php...
CVE-2020-25204
The God Kings application 0.60.1 for Android exposes a broadcast receiver to other apps called com.innogames.core.frontend.notifications.receivers.LocalNotificationBroadcastReceiver. The purpose of this broadcast receiver is to show an in-game push notification to the player. However, the...
CVE-2025-25204 affecting package gh for versions less than 2.62.0-6
CVE-2025-25204 affecting package gh for versions less than 2.62.0-6. A patched version of the package is available...
CVE-2025-25204
gh is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool gh attestation verify causes it to return a zero exit status when no attestations are present. This behavior is incorrect:...
CVE-2025-25204 vulnerabilities
Vulnerabilities for packages: gh...
CVE-2025-25204
gh is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool gh attestation verify causes it to return a zero exit status when no attestations are present. This behavior is incorrect:...
CVE-2025-25204 `gh attestation verify` returns incorrect exit code during verification if no attestations are present
gh is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool gh attestation verify causes it to return a zero exit status when no attestations are present. This behavior is incorrect:...
CVE-2025-25204
gh is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool gh attestation verify causes it to return a zero exit status when no attestations are present. This behavior is incorrect:...
Unspecified vulnerability exists in radare2 (CNVD-2022-25204)
radare2 is a set of libraries and tools for working with binary files. radare2 has a security vulnerability that stems from a heap buffer overflow in iteratechainedfixups. No detailed vulnerability details are currently available...
CVE-2022-25204
Jenkins Doktor Plugin 0.4.1 and earlier implements functionality that allows agent processes to render files on the controller as Markdown or Asciidoc, and error messages allow attackers able to control agent processes to determine whether a file with a given name exists...
CVE-2022-25204
CVE-2022-25204 affects Jenkins Doktor Plugin (versions 0.4.1 and earlier). The vulnerability arises from the plugin’s ability to render agent-controlled files on the Jenkins controller as Markdown or Asciidoc, coupled with error messages that can let an attacker who controls agent processes deter...
CVE-2021-25204
CVE-2021-25204 corresponds to a cross-site scripting (XSS) vulnerability in SourceCodester E-Commerce Website v1.0 . The flaw allows remote attackers to inject arbitrary web script via the subject field of the form handled by feedback_process.php . The description does not specify affected versio...