CVE-2009-4981

Multiple cross-site request forgery CSRF vulnerabilities in Photokorn Gallery 1.81 allow remote attackers to hijack the authentication of administrators...

Debian dla-4390 : pagure - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4390 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4390-1 [email protected]...

[SECURITY] [DLA 4390-1] pagure security update

Debian LTS Advisory DLA-4390-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert December 01, 2025 https://wiki.debian.org/LTS Package : pagure Version : 5.11.3+dfsg-1+deb11u1 CVE ID : CVE-2024-4981 CVE-2024-4982 CVE-2024-47515 CVE-2024-47516 Debian Bug : 1091383...

Debian: Security Advisory (DLA-4390-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 4363-1] dcmtk security update

Debian LTS Advisory DLA-4363-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany November 03, 2025 https://wiki.debian.org/LTS Package : dcmtk Version : 3.6.5-1+deb11u5 CVE ID : CVE-2020-36855 CVE-2022-4981 CVE-2025-9732 Debian Bug : 1113993 Several vulnerabilities...

Linux Distros Unpatched Vulnerability : CVE-2022-4981

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the...

CVE-2022-4981

creationtimestamp| type| source ---|---|--- 2025-10-21 17:32:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m3puene7ar2c...

CVE-2022-4981

A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit is now publ...

CVE-2022-4981

A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit is now publ...

CVE-2022-4981 DCMTK dcmqrscp dcmqrcnf.cc readPeerList null pointer dereference

A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit is now publ...

CVE-2025-4981

creationtimestamp| type| source ---|---|--- 2025-06-20 10:44:16+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18927 2025-06-20 12:15:20+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114715637785288887 2025-06-20 13:23:39+00:00| seen|...

CVE-2025-4981 Path Traversal Leading to RCE by Any Authenticated Mattermost User

Mattermost versions 10.5.x = 10.5.5, 9.11.x = 9.11.15, 10.8.x = 10.8.0, 10.7.x = 10.7.2, 10.6.x = 10.6.5 fail to sanitize filenames in the archive extractor which allows authenticated users to write files to arbitrary locations on the filesystem via uploading archives with path traversal sequence...

CVE-2025-4981 Path Traversal Leading to RCE by Any Authenticated Mattermost User

Mattermost versions 10.5.x = 10.5.5, 9.11.x = 9.11.15, 10.8.x = 10.8.0, 10.7.x = 10.7.2, 10.6.x = 10.6.5 fail to sanitize filenames in the archive extractor which allows authenticated users to write files to arbitrary locations on the filesystem via uploading archives with path traversal sequence...

CVE-2012-4981

Toshiba ConfigFree 8.0.38 has a CF7 File Remote Command Execution Vulnerability...

CVE-2024-4981

A vulnerability was discovered in Pagure server. If a malicious user were to submit a git repository with symbolic links, the server could unintentionally show incorporate and make visible content from outside the git repo...

CVE-2024-4981 Pagure: _update_file_in_git() follows symbolic links in temporary clones

A vulnerability was discovered in Pagure server. If a malicious user were to submit a git repository with symbolic links, the server could unintentionally show incorporate and make visible content from outside the git repo...

CVE-2024-4981

creationtimestamp| type| source ---|---|--- 2025-03-22 21:04:30+00:00| published-proof-of-concept| https://t.me/techb0ltGenona/5127 2025-05-12 19:29:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16023 2025-05-12 22:48:38+00:00| seen| https://t.me/cvedetector/25113...

Adobe Reader < 2015.006.30418 / 2017.011.30080 / 2018.011.20040 Multiple Vulnerabilities (APSB18-09) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 2015.006.30418, 2017.011.30080, or 2018.011.20040. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and...

openSUSE: Security Advisory for postfix (SUSE-SU-2023:4981-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-4981 Cross-site Scripting (XSS) - DOM in librenms/librenms

Cross-site Scripting XSS - DOM in GitHub repository librenms/librenms prior to 23.9.0...