Linux Distros Unpatched Vulnerability : CVE-2022-50339

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: avoid hcidevtestandsetflag in mgmtinithdev syzbot is again reporting attempt to...

CVE-2024-50339

GLPI is a free asset and IT management software package. Starting in version 9.5.0 and prior to version 10.0.17, an unauthenticated user can retrieve all the sessions IDs and use them to steal any valid session. Version 10.0.17 contains a patch for this issue...

CVE-2024-50339

GLPI is a free asset and IT management software package. Starting in version 9.5.0 and prior to version 10.0.17, an unauthenticated user can retrieve all the sessions IDs and use them to steal any valid session. Version 10.0.17 contains a patch for this issue...

CVE-2024-50339

creationtimestamp| type| source ---|---|--- 2024-12-11 17:51:38+00:00| seen| https://infosec.exchange/users/cve/statuses/113635458929398685...

CVE-2023-50339

creationtimestamp| type| source ---|---|--- 2023-12-26 09:27:08+00:00| seen| https://t.me/ctinow/159293 2023-12-28 02:47:44+00:00| seen| https://t.me/arpsyndicate/2180...

CVE-2023-50339

Stored cross-site scripting vulnerability exists in the User Management /admin/users page of GROWI versions prior to v6.1.11. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the site using the product...

CVE-2023-50339

GROWI is affected by a stored XSS on the User Management page (/admin/users) for versions prior to v6.1.11. The CVE-2023-50339 entry is corroborated across multiple sources (Red Hat CVE, OSV, PRION, JVN, CVE listings) with a consistent description: the vulnerability allows arbitrary script execut...