28 matches found
MINI-232Q-WG4G-9685
Bulletin has no description...
CVE-2025-9685
A vulnerability was identified in Portabilis i-Educar up to 2.10. This vulnerability affects unknown code of the file /module/AreaConhecimento/view of the component Listagem de áreas de conhecimento Page. Such manipulation of the argument ID leads to sql injection. The attack can be executed...
CVE-2025-9685 Portabilis i-Educar Listagem de áreas de conhecimento view sql injection
A vulnerability was identified in Portabilis i-Educar up to 2.10. This vulnerability affects unknown code of the file /module/AreaConhecimento/view of the component Listagem de áreas de conhecimento Page. Such manipulation of the argument ID leads to sql injection. The attack can be executed...
CVE-2025-9685 Portabilis i-Educar Listagem de áreas de conhecimento view sql injection
A vulnerability was identified in Portabilis i-Educar up to 2.10. This vulnerability affects unknown code of the file /module/AreaConhecimento/view of the component Listagem de áreas de conhecimento Page. Such manipulation of the argument ID leads to sql injection. The attack can be executed...
Linux Distros Unpatched Vulnerability : CVE-2016-9685
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple memory leaks in error paths in fs/xfs/xfsattrlist.c in the Linux kernel before 4.5.1 allow local users to cause a denial of service memory consumption...
CVE-2024-9685
creationtimestamp| type| source ---|---|--- 2024-10-10 05:02:32+00:00| seen| https://t.me/cvedetector/7549...
CVE-2024-9685
The Notification for Telegram plugin for WordPress is vulnerable to unauthorized test message sending due to a missing capability check on the 'nftbtestaction' function in versions up to, and including, 3.3.1. This makes it possible for authenticated attackers, with subscriber-level access and...
CVE-2024-9685 Notification for Telegram <= 3.3.1 - Missing Authorization to Authenticated (Subscriber+) Send Telegram Test Message
The Notification for Telegram plugin for WordPress is vulnerable to unauthorized test message sending due to a missing capability check on the 'nftbtestaction' function in versions up to, and including, 3.3.1. This makes it possible for authenticated attackers, with subscriber-level access and...
WordPress Notification for Telegram Plugin <= 3.3.1 is vulnerable to Broken Access Control
Software Notification for Telegram Type Plugin Vulnerable versions = 3.3.1 Fixed in 3.3.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-9685 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 4b8ba917ec79 Credits István Márton Requir...
Adobe Photoshop CC 20.x < 20.0.10 / 21.x < 21.2.1 Multiple Vulnerabilities (macOS APSB20-45)
The version of Adobe Photoshop CC or Photoshop installed on the remote macOS or Mac OS X host is prior to 20.0.10/21.2.1. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb20-45 advisory. - Adobe Photoshop versions Photoshop CC 2019, and Photoshop 2020 have an...
Adobe Photoshop CC 20.x < 20.0.10 / 21.x < 21.2.1 Multiple Vulnerabilities (APSB20-45)
The version of Adobe Photoshop CC or Photoshop installed on the remote Windows host is prior to 20.0.10/21.2.1. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb20-45 advisory. - Adobe Photoshop versions Photoshop CC 2019, and Photoshop 2020 have an out-of-bounds...
CVE-2020-9685
Adobe Photoshop CVE-2020-9685 is an out-of-bounds write vulnerability affecting Photoshop CC 2019 (up to 20.0.9) and Photoshop 2020 (up to 21.2.0). Successful exploitation could lead to arbitrary code execution. Remediation per APSB20-45: update to Photoshop 20.0.10 (Windows/macOS) or 21.2.1. Con...
kernel, perf, python security update
CentOS Errata and Security Advisory CESA-2017:1842 An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2017-3607)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-3607 advisory. - l2tp: fix racy SOCKZAPPED flag check in l2tpip,6bind Guillaume Nault Orabug: 26586050 CVE-2016-10200 - xfs: fix two memory leaks in xfsattrlist.c...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3606)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-3606 advisory. - l2tp: fix racy SOCKZAPPED flag check in l2tpip,6bind Guillaume Nault Orabug: 26586047 CVE-2016-10200 - xfs: fix two memory leaks in xfsattrlist.c...
CVE-2017-9685
The CVE-2017-9685 entry concerns Qualcomm WLAN driver race conditions in Android CAF builds using the Linux kernel, producing a Use-After-Free condition. Affected software is Qualcomm products with CAF Android releases, where the WLAN driver’s race condition can impact confidentiality, integrity,...
Oracle Linux 7 : kernel (ELSA-2017-1842-1) (Stack Clash)
The remote Oracle Linux host is missing a security update for the kernel packages. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from Oracle Linux Security Advisory ELSA-2017-1842-1. if NASLLEVEL 3000 exit0; include'deprecatednasllevel.inc';...
RHEL 7 : kernel (RHSA-2017:1842)
"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:1842 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: An use-after-free flaw was found in t...
SUSE SLES11 Security Update : kernel (SUSE-SU-2017:0494-1)
The SUSE Linux Enterprise 11 SP3 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2015-8970: crypto/algifskcipher.c in the Linux kernel did not verify that a setkey operation has been performed on an AFALG socket before an accept...
Ubuntu: Security Advisory (USN-3187-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...