MAL-2025-35880 Malicious code in test-mlw2-noons-mites-twirl-leads (npm)

The package test-mlw2-noons-mites-twirl-leads was found to contain malicious code...

CVE-2023-35880

Cross-Site Request Forgery CSRF vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.49 versions...

CVE-2020-35880

An issue was discovered in the bigint crate through 2020-05-07 for Rust. It allows a soundness violation...

Linux Distros Unpatched Vulnerability : CVE-2024-35880

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: hold iobufferlist reference over mmap If we look up the kbuf, ensure that it...

CVE-2024-35880

creationtimestamp| type| source ---|---|--- 2025-03-03 07:31:34+00:00| seen| https://bsky.app/profile/buherator.bsky.social/post/3ljhgmnwwpm22 2025-03-13 23:40:19+00:00| seen| https://t.me/CyberSecurityTechnologies/11924 2025-05-01 13:36:25+00:00| seen|...

USN-6918-1: Linux kernel vulnerabilities

It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel when modifying certain settings values through debugfs. A privileged local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker...

Ubuntu: Security Advisory (USN-6893-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6893-1: Linux kernel vulnerabilities

It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel when modifying certain settings values through debugfs. A privileged local attacker could use this to cause a denial of service. CVE-2024-24857, CVE-2024-24858, CVE-2024-24859 Several security issues we...

CVE-2024-35880

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: hold iobufferlist reference over mmap If we look up the kbuf, ensure that it doesn't get unregistered until after we're done with it. Since we're inside mmap, we cannot safely use the iouring lock. Rely on the fact...

CVE-2024-35880

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: hold iobufferlist reference over mmap If we look up the kbuf, ensure that it doesn't get unregistered until after we're done with it. Since we're inside mmap, we cannot safely use the iouring lock. Rely on the fact...

CVE-2024-35880 io_uring/kbuf: hold io_buffer_list reference over mmap

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: hold iobufferlist reference over mmap If we look up the kbuf, ensure that it doesn't get unregistered until after we're done with it. Since we're inside mmap, we cannot safely use the iouring lock. Rely on the fact...

CVE-2024-35880 io_uring/kbuf: hold io_buffer_list reference over mmap

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: hold iobufferlist reference over mmap If we look up the kbuf, ensure that it doesn't get unregistered until after we're done with it. Since we're inside mmap, we cannot safely use the iouring lock. Rely on the fact...

CVE-2023-35880

creationtimestamp| type| source ---|---|--- 2023-07-17 18:40:22+00:00| seen| https://t.me/cibsecurity/66824...

CVE-2023-35880

CVE-2023-35880: CSRF in WooCommerce Brands (WordPress plugin)

CVE-2023-35880 WordPress WooCommerce Brands Plugin <= 1.6.49 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.49 versions...

CVE-2023-35880 WordPress WooCommerce Brands Plugin <= 1.6.49 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.49 versions...

WordPress WooCommerce Brands Plugin <= 1.6.49 is vulnerable to Cross Site Request Forgery (CSRF)

Software WooCommerce Brands Type Plugin Vulnerable versions = 1.6.49 Fixed in 1.6.50 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-35880 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID f5fc6ab7da71 Credits Rafie Muhammad...

CVE-2022-35880

creationtimestamp| type| source ---|---|--- 2022-10-25 20:40:50+00:00| seen| https://t.me/cibsecurity/52052...

CVE-2022-35880

Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z and 6.9X. A specially-crafted UPnP negotiation can lead to memory corruption, information disclosure, and denial of service. An attacker can host a malicio...

CVE-2022-35880

CVE-2022-35880 concerns Abode Systems iota All-In-One Security Kit (firmware 6.9Z and 6.9X). Talos documents four UPnP logging format-string injection vulnerabilities in the device’s UPnP logging code paths, exploitable via crafted UPnP negotiation responses. The root cause is format-string misus...