Lucene search
+L

921 matches found

RedHat Linux
RedHat Linux
added 2026/07/11 1:14 a.m.10 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: rust: cargo-1.97.0-1.1.hum1 aarch64, x8664 clippy-1.97.0-1.1.hum1 aarch64, x8664 rust-1.97.0-1.1.hum1 aarch64, x8664 rust-analyzer-1.97.0-1.1.hum1 aarch64, x8664...

8.7CVSS6.6AI score0.00445EPSS
Exploits1References4
OPENSUSE Linux
OPENSUSE Linux
added 2026/07/09 12:0 a.m.5 views

cargo-c-0.10.23-1.1 on GA media (moderate)

cargo-c-0.10.23-1.1 on GA media Announcement ID: openSUSE-SU-2026:11210-1 Rating: moderate Cross-References: CVE-2026-41676 CVE-2026-41677 CVE-2026-41678 CVE-2026-41681 CVE-2026-41898 CVE-2026-42327 CVE-2026-44662 CVE-2026-45784 CVSS scores: CVE-2026-41676 SUSE : 6.5...

8.7CVSS5.9AI score0.00359EPSS
Exploits0
OSV
OSV
added 2026/07/08 12:0 a.m.2 views

OPENSUSE-SU-2026:11210-1 cargo-c-0.10.23-1.1 on GA media

These are all security issues fixed in the cargo-c-0.10.23-1.1 package on the GA media of openSUSE Tumbleweed...

9.3CVSS6.1AI score0.00359EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/07/02 12:22 p.m.8 views

CVE-2026-14363

A flaw was found in the Mediawiki Cargo Extension. This vulnerability, identified as SQL Injection, allows an attacker to execute malicious SQL commands. By exploiting improper handling of special characters in SQL commands, an attacker can potentially access, modify, or delete sensitive data...

9.8CVSS5.8AI score0.00294EPSS
Exploits0References6
Snyk
Snyk
added 2026/07/01 9:19 p.m.5 views

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection via improper handling of user-supplied input in the Special:Drilldown process. An attacker can execute arbitrary SQL commands by injecting crafted input. Remediation Upgrade mediawiki/cargo to version 3.9.1 or higher...

9.8CVSS6.2AI score0.00294EPSS
Exploits0References2
Chainguard
Chainguard
added 2026/07/01 8:21 p.m.13 views

CVE-2026-40034 vulnerabilities

Vulnerabilities for packages: jujutsu, cargo-audit, cargo-c...

8.5CVSS5.1AI score0.00351EPSS
Exploits0
Wolfi
Wolfi
added 2026/07/01 8:21 p.m.17 views

CVE-2026-40034 vulnerabilities

Vulnerabilities for packages: cargo-c, cargo-audit...

8.5CVSS5.1AI score0.00351EPSS
Exploits0
NVD
NVD
added 2026/07/01 8:17 p.m.7 views

CVE-2026-14363

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from before 1.43.9,1.44.6,1.45.4...

9.8CVSS0.00294EPSS
Exploits0References3
OSV
OSV
added 2026/07/01 8:17 p.m.3 views

CVE-2026-14363

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from before 1.43.9,1.44.6,1.45.4...

9.8CVSS6.1AI score
Exploits0References3
CVE
CVE
added 2026/07/01 7:22 p.m.19 views

CVE-2026-14363

The CVE-2026-14363 issue affects the MediaWiki Cargo Extension for MediaWiki, where improper neutralization of special elements in SQL queries (notably in Special:Drilldown) enables SQL injection. Reported impacts include unauthorized access, modification, or deletion of data in the database. Aff...

9.8CVSS5.8AI score0.00294EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/07/01 7:22 p.m.7 views

EUVD-2026-41127

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from before 1.43.9,1.44.6,1.45.4...

6.9CVSS5.8AI score0.00294EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/07/01 7:22 p.m.7 views

CVE-2026-14363

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from before 1.43.9,1.44.6,1.45.4...

6.9CVSS5.8AI score0.00294EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/07/01 7:22 p.m.37 views

CVE-2026-14363 Cargo Extension: SQLi in Special:Drilldown

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from before 1.43.9,1.44.6,1.45.4...

6.9CVSS0.00294EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/07/01 7:17 p.m.8 views

CVE-2026-58521

A flaw was found in the Mediawiki - Cargo Extension. This vulnerability allows an attacker to inject malicious commands into database queries. This could lead to unauthorized access to sensitive information, modification of data, or disruption of the database's availability...

9.8CVSS5.8AI score0.00283EPSS
Exploits0References2
NVD
NVD
added 2026/07/01 6:16 p.m.21 views

CVE-2026-58521

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from before 1.43.9,1.44.6,1.45.4...

9.8CVSS0.00283EPSS
Exploits0References2
OSV
OSV
added 2026/07/01 6:16 p.m.3 views

CVE-2026-58521

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from before 1.43.9,1.44.6,1.45.4...

9.8CVSS6.1AI score
Exploits0References2
CVE
CVE
added 2026/07/01 5:30 p.m.22 views

CVE-2026-58521

The CVE-2026-58521 entry concerns an SQL injection in the Wikimedia Foundation MediaWiki Cargo Extension. According to connected sources, the vulnerability arises from improper neutralization of special elements in SQL commands, affecting MediaWiki Cargo Extension versions before 1.43.9, 1.44.6, ...

9.8CVSS5.8AI score0.00283EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/07/01 5:30 p.m.12 views

EUVD-2026-41102

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from before 1.43.9,1.44.6,1.45.4...

6.9CVSS5.8AI score0.00283EPSS
Exploits0References2
NVD
NVD
added 2026/07/01 5:16 a.m.9 views

CVE-2026-58519

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows Stored XSS. This issue affects Mediawiki - Cargo Extension: from before 3.9.1...

6.9CVSS0.00134EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/01 3:59 a.m.38 views

CVE-2026-58519 Stored XSS through Cargo's map format

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows Stored XSS. This issue affects Mediawiki - Cargo Extension: from before 3.9.1...

6.9CVSS0.00134EPSS
Exploits0References2
Rows per page
Query Builder