32 matches found
UBUNTU-CVE-2026-48760
Unknown description...
Linux Distros Unpatched Vulnerability : CVE-2026-48760
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Symfony: HtmlSanitizer URL Parser Deny Gates Underinclusive: Percent-Encoded BiDi Marks and Unicode Whitespace Bypass Visual-Spoofing Defense CVE-2026-48760 Not...
CVE-2026-48760
creationtimestamp| type| source ---|---|--- 2026-05-27 10:04:06+00:00| seen| https://bsky.app/profile/symfony.com/post/3mmtaxn3hnf2h 2026-05-27 14:35:08+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmtq4e3x7q2h...
📄 GestioIP 3.5.7 Remote Command Execution
This Metasploit module exploits a command execution via file upload. If GestioIP is configured to use no authentication for admin account, no password is required to exploit the vulnerability. Otherwise, an authenticated user with admin right on the web site is required to exploit. This module...
GestioIP 3.5.7 - Remote Command Execution (RCE)
Exploit Title: GestioIP 3.5.7 - Remote Command Execution RCE Exploit Author: m4xth0r Maximiliano Belino Author website: https://maxibelino.github.io/ Author email max.cybersecurity at belino.com GitHub disclosure link: https://github.com/maxibelino/CVEs/tree/main/CVE-2024-48760 Date: 2025-01-13...
CVE-2024-48760
creationtimestamp| type| source ---|---|--- 2025-01-15 00:03:26+00:00| seen| https://t.me/cvedetector/15381...
CVE-2024-48760
An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file upload function. The attacker can upload a malicious perlcmd.cgi file that overwrites the original upload.cgi file, enabling remote command execution...
CVE-2024-48760
An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file upload function. The attacker can upload a malicious perlcmd.cgi file that overwrites the original upload.cgi file, enabling remote command execution...
CVE-2024-48760
An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file upload function. The attacker can upload a malicious perlcmd.cgi file that overwrites the original upload.cgi file, enabling remote command execution...
OracleVM 3.4 : kernel-uek (OVMSA-2024-0015)
The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.91.3- nfsatomicopen: prevent parallel nfslookup on a negative hashed Al Viro Orabug: 370062394.1.12-124.91.2- vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug:...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2024-12806)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12806 advisory. - vtioctl: fix arrayindexnospec in vtsetactivate Jakob Koschel Orabug: 37101899 CVE-2022-48804 - tty: vtioctl: fix potential Spectre v1 Gustavo A...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2441)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:2362-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47247: net/mlx5e: Fix use-after-free of encap entry in neigh update handler bsc1224865. - CVE-2021-47311: net: qcom/emac: fix UAF in emacremove bsc1225010. ...
CVE-2022-48760
In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...
CVE-2022-48760
The CVE-2022-48760 entry concerns a Linux kernel USB subsystem hang in usb_kill_urb() caused by memory-access ordering issues (SB pattern) between usb_kill_urb() and __usb_hcd_giveback_urb() on SMP systems. The vulnerability is fixed by adding memory barriers, specifically using the smp_mb__after...
CVE-2023-48760
Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...
CVE-2023-48760
Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...
CVE-2023-48760 WordPress JetElements For Elementor plugin <= 2.6.13 - Unauthenticated Broken Access Control vulnerability
Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...
CVE-2023-48760 WordPress JetElements For Elementor plugin <= 2.6.13 - Unauthenticated Broken Access Control vulnerability
Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...
CVE-2023-48760
CVE-2023-48760 is a Missing Authorization / Broken Access Control issue affecting Crocoblock JetElements and related Elementor Jet plugins. Connected Patchstack entries confirm unauthenticated access issues for multiple Crocoblock plugins, including: JetElements: vulnerable <= 2.6.13; fixed in...