45 matches found
EUVD-1999-1306
Malware in sbrugna...
EUVD-2024-25351
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2022-47940
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in...
be.yildiz-games:module-messaging-activemq (=1.0.15), com.chutneytesting:action-impl (>=2.2.1 <=3.0.0) +114 more potentially affected by CVE-2025-27533 via org.apache.activemq:activemq-client (>=5.18.0 <=5.18.6)
org.apache.activemq:activemq-client MAVEN version =5.18.0, =2.2.1, =2.2.1, =2.2.2, =2.2.1, =2.0.0, =0.4.4, =0.4.4, =0.28.0, =2.0.0, =3.0.0, =0.17.0, =0.19.12-2023-11-12, =0.19.20-2024-11-05, =0.19.12-2023-11-12, =RC-1.0.0.RC4+2025-05-15 and more Source cves: CVE-2025-27533 Source advisory:...
be.yildiz-games:module-messaging-activemq (=1.0.15), com.chutneytesting:action-impl (>=2.2.1 <=3.0.0) +53 more potentially affected by CVE-2025-27533 via org.apache.activemq:activemq-openwire-legacy (>=5.18.0 <=5.18.6)
org.apache.activemq:activemq-openwire-legacy MAVEN version =5.18.0, =2.2.1, =2.2.1, =2.2.2, =2.2.1, =0.17.0, =0.19.12-2023-11-12, =0.19.12-2023-11-12, =RC0-0.19.12-2023-10-27, =0.19.12-2023-11-12, =1.2.1.2, =1.2.1.1-beta.1, =0.10.0, =1.1.0, =1.5.0, =1.7.1 and more Source cves: CVE-2025-27533 Sour...
CVE-2025-39544
Cross-Site Request Forgery CSRF vulnerability in sminozzi WP Tools wptools allows Path Traversal.This issue affects WP Tools: from n/a through = 5.18...
WordPress plugin WP Tools 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site reques...
CVE-2024-28247
The Pi-hole is a DNS sinkhole that protects your devices from unwanted content without installing any client-side software. A vulnerability has been discovered in Pihole that allows an authenticated user on the platform to read internal server files arbitrarily, and because the application runs...
CVE-2024-28247 Pihole Authenticated Arbitrary File Read with root privileges
The Pi-hole is a DNS sinkhole that protects your devices from unwanted content without installing any client-side software. A vulnerability has been discovered in Pihole that allows an authenticated user on the platform to read internal server files arbitrarily, and because the application runs...
Dell Secure Connect Gateway Encryption Issue Vulnerability
Dell Secure Connect Gateway is a secure connectivity gateway from Dell USA. A cryptographic issue vulnerability exists in Dell Secure Connect Gateway version 5.18, which stems from a vulnerability containing insufficient cryptographic strength. No detailed vulnerability details are provided at th...
CVE-2024-22458
Dell Secure Connect Gateway, 5.18, contains an Inadequate Encryption Strength Vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, allowing an attacker to recover plaintext from a block of ciphertext...
CVE-2024-22458
Dell Secure Connect Gateway, 5.18, contains an Inadequate Encryption Strength Vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, allowing an attacker to recover plaintext from a block of ciphertext...
Dell Secure Connect Gateway 加密问题漏洞
Dell Secure Connect Gateway is a secure connectivity gateway from Dell USA. A cryptographic issue vulnerability exists in Dell Secure Connect Gateway version 5.18, which stems from a vulnerability containing insufficient cryptographic strength. No detailed vulnerability details are provided at th...
PT-2024-13187 · Dell · Dell Secure Connect Gateway Appliance
Name of the Vulnerable Software and Affected Versions: Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance versions 5.10.00.00 through 5.18.00.00 Description: A security concern has been identified where a malicious user with a valid user session may inject malicious...
Pi-hole Web Interface 2.0 <= 5.17 Broken Access Control Vulnerability
The Pi-hole Web Interface previously AdminLTE is prone to a broken access control vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...
Okta LDAP Agent 安全漏洞
Okta LDAP Agent is an agent software from Okta USA. A code issue vulnerability exists in Okta LDAP Agent versions prior to 5.18. An attacker can exploit this vulnerability to execute arbitrary code...
GSD-2023-1001678 misc: fastrpc: Fix use-after-free and race in fastrpc_map_find
misc: fastrpc: Fix use-after-free and race in fastrpcmapfind This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.8 by commit...
AZL-12095 CVE-2022-47940 affecting package kernel for versions less than 5.15.92.1-2
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2write...
PT-2022-35177 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.2 Description: The issue is related to preventing double key removal and unref in the mctp protocol. It was introduced in version v5.18 and fixed in version v6.0.2. The actual impact and attack plausibility...
Parrot 5.1 - Security GNU/Linux Distribution Designed with Cloud Pentesting and IoT Security in Mind
Parrot OS 5.1 is officially released. We're proud to say that the new version of Parrot OS 5.1 is available for download; this new version includes a lot of improvements and updates that makes the distribution more performing and more secure. How do I get Parrot OS? You can download Parrot OS by...