17 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-26608
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix global oob in ksmbdnlpolicy Similar to a reported issue check the commit...
CVE-2025-26608
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was discovered in the WeGIA application, dependentedocdependente.php endpoint. This vulnerability could allow an attacker to execute arbitrary SQL queries, allowing...
CVE-2025-26608
WeGIA (open source Web Manager) has a SQL Injection in the dependente_docdependente.php endpoint (affecting parameters like id_dependente and id_doc) that allows arbitrary SQL execution and unauthorized data access. Root cause: improper input handling leading to query manipulation. Impact: potent...
CVE-2025-26608 SQL Injection endpoint 'dependente_docdependente.php' parameter 'id_dependente', 'id_doc' in WeGIA
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A SQL Injection vulnerability was discovered in the WeGIA application, dependentedocdependente.php endpoint. This vulnerability could allow an attacker to execute arbitrary SQL queries, allowing...
CVE-2021-26608
An arbitrary file download and execution vulnerability was found in the HShell.dll of handysoft Co., Ltd groupware ActiveX module. This issue is due to missing support for integrity check of download URL or downloaded file hash...
CVE-2024-26608
creationtimestamp| type| source ---|---|--- 2024-03-11 19:27:21+00:00| seen| https://t.me/ctinow/204976...
CVE-2024-26608
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix global oob in ksmbdnlpolicy Similar to a reported issue check the commit b33fb5b801c6 "net: qualcomm: rmnet: fix global oob in rmnetpolicy", my local fuzzer finds another global out-of-bounds read for policy...
CVE-2024-26608 ksmbd: fix global oob in ksmbd_nl_policy
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix global oob in ksmbdnlpolicy Similar to a reported issue check the commit b33fb5b801c6 "net: qualcomm: rmnet: fix global oob in rmnetpolicy", my local fuzzer finds another global out-of-bounds read for policy...
CVE-2024-26608
The CVE-2024-26608 entry describes a Linux kernel ksmbd_nl_policy out-of-bounds read that was addressed by a patch to fix a global oob in ksmbd_nl_policy. The bug manifested as a read of size 1 at a netlink attribute parsing path, with the faulting address located in ksmbd_nl_policy+0x100/0xa80 a...
CVE-2023-26608
creationtimestamp| type| source ---|---|--- 2023-03-01 07:33:11+00:00| seen| https://t.me/cibsecurity/59195...
CVE-2023-26608
SOLDR System of Orchestration, Lifecycle control, Detection and Response 1.1.0 allows stored XSS via the module editor...
CVE-2023-26608
SOLDR System of Orchestration, Lifecycle control, Detection and Response 1.1.0 allows stored XSS via the module editor...
CVE-2023-26608
SOLDR System of Orchestration, Lifecycle control, Detection and Response 1.1.0 allows stored XSS via the module editor...
CVE-2023-26608
SOLDR (System of Orchestration, Lifecycle control, Detection and Response) 1.1.0 is affected by a stored Cross-Site Scripting (XSS) vulnerability in the module editor. The issue is described across multiple sources as a stored XSS flaw in the module editor, with SOLDR 1.1.0 explicitly cited as vu...
CVE-2021-26608
creationtimestamp| type| source ---|---|--- 2021-09-09 16:29:48+00:00| seen| https://t.me/cibsecurity/28577...
CVE-2021-26608 handysoft groupware arbitrary file download and execution vulnerability
An arbitrary file download and execution vulnerability was found in the HShell.dll of handysoft Co., Ltd groupware ActiveX module. This issue is due to missing support for integrity check of download URL or downloaded file hash...
CVE-2021-26608
The provided records describe CVE-2021-26608 as an arbitrary file download and execution vulnerability in Handysoft Co., Ltd groupware ActiveX module, specifically the HShell.dll. Root cause: lack of integrity checking for the download URL or the downloaded file hash. Impact stated as allows arbi...