Oracle Linux 9 : osbuild-composer (ELSA-2026-9044)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-9044 advisory. 149-5.0.1 - Add missing dependency over dracut-config-rescue for image-installer ORABUG: 38587453 - Switch to UEKR8 repositories for OL9.6 Orabug: 37962207 - Ad...

EUVD-2020-6357

Malware in sbrugna...

CVE-2025-9044

creationtimestamp| type| source ---|---|--- 2025-09-26 19:57:04+00:00| seen| Telegram/dNftNp9ffPwEDLc1G3nndeW44V4v3-HQdP3Es4W4yJqjOs...

WordPress Mapster WP Maps plugin <= 1.20.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zer0gh0st in WordPress Plugin Mapster WP Maps versions = 1.20.0...

Linux Distros Unpatched Vulnerability : CVE-2017-9044

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The printsymbolforbuildattribute function in readelf.c in GNU Binutils 2017-04-12 allows remote attackers to cause a denial of service invalid read and SEGV via...

CVE-2024-9044

CVE-2024-9044 describes an XML External Entity (XXE) vulnerability in Easy Tax Client Software 2023 version 1.2 and earlier, across Windows, Linux, and macOS. The linked PT-2024-39386 entry confirms the affected software and notes a workaround: disable XML parsing until a patch is available; no f...

CVE-2024-9044 XML External Entity (XXE) Vulnerability in EasyTax

A XML External Entity XXE vulnerability has been identified in Easy Tax Client Software 2023 1.2 and earlier across multiple platforms, including Windows, Linux, and macOS...

CVE-2024-9044 XML External Entity (XXE) Vulnerability in EasyTax

A XML External Entity XXE vulnerability has been identified in Easy Tax Client Software 2023 1.2 and earlier across multiple platforms, including Windows, Linux, and macOS...

SUSE CVE-2017-9044

The printsymbolforbuildattribute function in readelf.c in GNU Binutils 2017-04-12 allows remote attackers to cause a denial of service invalid read and SEGV via a crafted ELF file...

CVE-2020-14203

WebFOCUS Business Intelligence 8.0 SP6 allows a Cross-Site Request Forgery CSRF attack against administrative users within the /ibiapps/WFServlet.ibfs endpoint. The impact may be creation of an administrative user. It can also be exploited in conjunction with CVE-2016-9044...

Cross site request forgery (csrf)

WebFOCUS Business Intelligence 8.0 SP6 allows a Cross-Site Request Forgery CSRF attack against administrative users within the /ibiapps/WFServlet.ibfs endpoint. The impact may be creation of an administrative user. It can also be exploited in conjunction with CVE-2016-9044...

CVE-2020-14203

WebFOCUS Business Intelligence 8.0 SP6 allows a Cross-Site Request Forgery CSRF attack against administrative users within the /ibiapps/WFServlet.ibfs endpoint. The impact may be creation of an administrative user. It can also be exploited in conjunction with CVE-2016-9044...

CVE-2020-9044

XXE vulnerability exists in the Metasys family of product Web Services which has the potential to facilitate DoS attacks or harvesting of ASCII server files. This affects Johnson Controls' Metasys Application and Data Server ADS, ADS-Lite versions 10.1 and prior; Metasys Extended Application and...

CVE-2020-9044

CVE-2020-9044 - XML External Entity (XXE) in Metasys Web Services : The vulnerability is an XXE in Johnson Controls Metasys Web Services, enabling potential DoS and harvesting of server ASCII files. Affected products include ADS/ADS-Lite, ADX, ODS, OAS, NAE55/NIE55/ NIE59 families, NAE85/NIE85, L...

CVE-2019-17141

Foxit PhantomPDF 9.6.0.25114 is affected by CVE-2019-17141. The vulnerability exists in the text field Calculate action where code execution is possible due to a missing validation of object existence before operations, allowing remote attackers to run code in the current process. The issue requi...

CVE-2016-9044

creationtimestamp| type| source ---|---|--- 2018-09-07 20:33:18+00:00| seen| https://t.me/cibsecurity/66...

CVE-2016-9044

CVE-2016-9044 is confirmed in Information Builders WebFOCUS Business Intelligence Portal version 8.1. A command injection vulnerability exists when a specially crafted web parameter is processed, allowing an authenticated attacker to trigger arbitrary commands via a crafted web request. Multiple ...

CVE-2018-9044

In Advanced SystemCare Ultimate 11.0.1.58, the driver file Monitorwin10x64.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c4060cc...

CVE-2018-9044

In Advanced SystemCare Ultimate 11.0.1.58, the driver file Monitorwin10x64.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c4060cc...

CVE-2018-9044

CVE-2018-9044 affects Advanced SystemCare Ultimate 11.0.1.58 via the Monitor_win10_x64.sys driver. The issue arises because IOCTL 0x9c4060cc input is not validated, enabling local users to trigger a denial of service (BSOD) and potentially other impact. Documents consistently identify the vulnera...