28 matches found
ROOT-OS-DEBIAN-13-CVE-2025-40028 CVE-2025-40028 in rootio-linux - Patched by Root
Root has patched CVE-2025-40028 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
CVE-2023-40028
Ghost is an open source content management system. Versions prior to 5.59.1 are subject to a vulnerability which allows authenticated users to upload files that are symlinks. This can be exploited to perform an arbitrary file read of any file on the host operating system. Site administrators can...
Ubuntu: Security Advisory (USN-7906-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
BELL-CVE-2025-40028
Bulletin has no description...
SUSE CVE-2025-40028
In the Linux kernel, the following vulnerability has been resolved: binder: fix double-free in dbitmap A process might fail to allocate a new bitmap when trying to expand its proc-dmap. In that case, dbitmapgrow fails and frees the old bitmap via dbitmapfree. However, the driver calls dbitmapfree...
CVE-2025-40028
creationtimestamp| type| source ---|---|--- 2025-10-28 11:09:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m4asattfxv26...
DEBIAN-CVE-2025-40028
In the Linux kernel, the following vulnerability has been resolved: binder: fix double-free in dbitmap A process might fail to allocate a new bitmap when trying to expand its proc-dmap. In that case, dbitmapgrow fails and frees the old bitmap via dbitmapfree. However, the driver calls dbitmapfree...
CVE-2025-40028
CVE-2025-40028 : In the Linux kernel, a double-free can occur in the Binder driver’s dbitmap path when expanding proc->dmap; dbitmap_grow() frees the old bitmap via dbitmap_free(), and the driver later frees it again on process termination. The fixed mitigation is to set proc->map to NULL i...
Linux Distros Unpatched Vulnerability : CVE-2025-40028
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - binder: fix double-free in dbitmap A process might fail to allocate a new bitmap when trying to expand its proc-dmap. In that case, dbitmapgrow fails and frees...
CVE-2025-40028
In the Linux kernel, the following vulnerability has been resolved: binder: fix double-free in dbitmap A process might fail to allocate a new bitmap when trying to expand its proc-dmap. In that case, dbitmapgrow fails and frees the old bitmap via dbitmapfree. However, the driver calls dbitmapfree...
MAL-2025-40028 Malicious code in xyatwbkqghlznemj (npm)
The package xyatwbkqghlznemj was found to contain malicious code...
CVE-2022-40028
SourceCodester Simple Task Managing System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the component newProjectValidation.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fullName parameter...
Exploit for Path Traversal in Ghost
CVE-2023-40028 POC for CVE-2023-40028: Ghost CMS Arbitrary Fil...
CVE-2023-40028
creationtimestamp| type| source ---|---|--- 2025-03-07 10:00:06+00:00| published-proof-of-concept| Telegram/DSUpJzd535KWvozjCvixS0aCLxmEfW4QzhCQOssRq3Zo9k 2025-04-12 15:00:15+00:00| seen| https://bsky.app/profile/0xdf.bsky.social/post/3lmmsdrpgls2z 2025-04-14 23:00:06+00:00|...
Exploit for Path Traversal in Ghost
CVE-2023-40028: Ghost CMS Symlink Exploitation PoC Overv...
Ghost CMS 5.59.1 Arbitrary File Read
Ghost CMS version 5.59.1 proof of concept arbitrary file reading exploit. ============================================================================================================================================= | Title : Ghost CMS v 5.59.1 PHP Code Injection Vulnerability | | Author :...
Exploit for Path Traversal in Ghost
CVE-2023-40028: Ghost CMS Arbitrary File Read Description...
Exploit for Path Traversal in Ghost
CVE-2023-40028 PoC Exploit Symlink Upload Vulnerability in Gho...
Exploit for Path Traversal in Ghost
Proof of Concept PoC for CVE-2023-40028 CVE-2023-40028 is a...
Exploit for Path Traversal in Ghost
Ghost Arbitrary File Read Exploit CVE-2023-40028 Over...