MAL-2025-9545 Malicious code in @teamteanpm2024/repellendus-ut-dolorum (npm)

The package @teamteanpm2024/repellendus-ut-dolorum was found to contain malicious code...

CVE-2020-9545

Pale Moon 28.x before 28.8.4 has a segmentation fault related to module scripting, as demonstrated by a Lacoste web site...

CVE-2015-9545

An issue was discovered in xdLocalStorage through 2.0.5. The receiveMessage function in xdLocalStorage.js does not implement any validation of the origin of web messages. Remote attackers who can entice a user to load a malicious site can exploit this issue to impact the confidentiality and...

CVE-2024-9545 Shortcodes and extra features for Phlox theme <= 2.17.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via aux_contact_box and aux_gmaps Shortcodes

The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's auxcontactbox and auxgmaps shortcodes in all versions up to, and including, 2.17.0 due to insufficient input sanitization and output escaping on user supplied...

CVE-2024-9545 Shortcodes and extra features for Phlox theme <= 2.16.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via aux_contact_box and aux_gmaps Shortcodes

The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's auxcontactbox and auxgmaps shortcodes in all versions up to, and including, 2.16.4 due to insufficient input sanitization and output escaping on user supplied...

openSUSE: Security Advisory for poppler (SUSE-SU-2023:4270-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for poppler (SUSE-SU-2023:4562-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2023:4362-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 15 Security Update : poppler (SUSE-SU-2023:4270-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4270-1 advisory. - An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readTextRegion located in JBIG2Stream.cc, can be triggered by...

SUSE-SU-2023:4270-1 Security update for poppler

This update for poppler fixes the following issues: - CVE-2019-9545: Fixed an uncontrolled recursion issue that could cause a crash bsc1128114. - CVE-2022-37052: Fixed a crash that could be triggered when opening a crafted file bsc1214726...

SUSE CVE-2019-9545

An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readTextRegion located in JBIG2Stream.cc, can be triggered by sending a crafted pdf file to for example the pdfimages binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have...

Mageia: Security Advisory (MGASA-2017-0249)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

@sobotics/caching (=1.1.1) potentially affected by CVE-2015-9545 via xdlocalstorage (=2.0.5)

xdlocalstorage NPM version =2.0.5 is affected by a known vulnerability. The following packages have a transitive dependency on xdlocalstorage and may be impacted: - @sobotics/caching =1.1.1 Source cves: CVE-2015-9545 Source advisory: OSV:GHSA-76QM-4F93-FG6F...

CVE-2015-9545

creationtimestamp| type| source ---|---|--- 2020-04-07 22:48:18+00:00| seen| https://t.me/cibsecurity/11090...

CVE-2015-9545

The CVE-2015-9545 issue affects xdLocalStorage up to version 2.0.5, where receiveMessage() in xdLocalStorage.js does not validate the origin of web messages. This missing origin validation can allow remote attackers to entice a user to load a malicious site and exploit web messages to affect the ...

CVE-2020-9545

CVE-2020-9545 affects Pale Moon 28.x prior to 28.8.4. The vulnerability is a segmentation fault related to the module scripting subsystem, demonstrated by a Lacoste site. Multiple connected sources (NVD, Red Hat advisory references, and vendor records) confirm the same description. No root-cause ...

CVE-2019-9545

CVE-2019-9545 affects Poppler 0.74.0: a recursive call in JBIG2Stream::readTextRegion() (JBIG2Stream.cc) can be triggered by a crafted PDF (e.g., via pdfimages) to cause a Denial of Service (segfault) and potentially other impact related to JBIG2Bitmap::clearToZero. Connected advisories (OSV) con...

CVE-2018-9545

CVE-2018-9545 affects Android 9, with a local escalation of privilege due to an out-of-bounds write in BTA_HdRegisterApp (bta_hd_api.cc) caused by a missing bounds check. The issue enables a local attacker to potentially escalate privileges without user interaction. The vulnerability is documente...

Fedora Update for mpg123 FEDORA-2017-172410ec92

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for mpg123 FEDORA-2017-c89d94d812

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...