Astra Linux - уязвимость в linux

In the Linux kernel, the following vulnerabilities have been resolved: NFS: Fixed a use-after-free in nfs4initclient. KASAN reports a use-after-free when attempting to mount two different exports through two different NICs that belong to the same server. Olga was able to exploit this issue with...

WordPress plugin XStore Core 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There wa...

MiracleLinux 4 : rh-mysql57-mysql-5.7.19-6.AXS4 (AXSA:2017-2329:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2329:01 advisory. An integer overflow flaw leading to a buffer overflow was found in the way MySQL parsed connection handshake packets. An unauthenticated remote...

MiracleLinux 4 : rh-mysql56-mysql-5.6.38-1.AXS4 (AXSA:2017-2426:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2426:02 advisory. This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Upda...

PT-2025-53785

Name of the Vulnerable Software and Affected Versions DedeCMS version 5.7 Description The software contains a Cross-Site Request Forgery CSRF issue. The vulnerability is located in the /src/dede/makehtml list action.php endpoint. A malicious actor can potentially cause a user to perform unintende...

CVE-2025-66224 OrangeHRM is Vulnerable to Code Execution Through Arbitrary File Write from Sendmail Parameter Injection

OrangeHRM is a comprehensive human resource management HRM system. From version 5.0 to 5.7, the application contains an input-neutralization flaw in its mail configuration and delivery workflow that allows user-controlled values to flow directly into the system’s sendmail command. Because these...

PT-2025-48365

Name of the Vulnerable Software and Affected Versions OrangeHRM versions 5.0 through 5.7 Description OrangeHRM, a human resource management system, contains an input-neutralization flaw in its mail configuration and delivery workflow. User-controlled values are not properly sanitized before being...

EUVD-2020-14963

Malware in sbrugna...

EUVD-2019-11427

Malware in sbrugna...

EUVD-1999-1061

Malware in sbrugna...

EUVD-2020-3169

Malware in sbrugna...

EUVD-2016-0696

Malware in sbrugna...

EUVD-2019-12618

Malware in sbrugna...

EUVD-2020-23855

Malware in sbrugna...

EUVD-2019-12479

Malware in sbrugna...

EUVD-2020-11208

Malware in sbrugna...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: mysql (UTSA-2025-986140)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986140 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Information Schema. Supported versions that are affected are 5.7.32 and prior and 8.0.22 and...

EUVD-2024-26088

Malicious code in bioql PyPI...

EUVD-2022-44526

Malicious code in bioql PyPI...

EUVD-2025-7824

Malicious code in bioql PyPI...