17 matches found
CVE-2026-12047
HTML injection in pgAdmin 4's cloud deployment module. The verifycredentials, deploy, regions, and update-server endpoints under /rds/, /azure/, /google/, and the top-level /cloud/ blueprint propagated AWS / Azure / Google SDK exception text — and the related file-resolution and database-commit...
heist-salt (>=1.0.0 <=5.3.1), isalt (>=2019.12.0 <=2021.2.2) +9 more potentially affected by CVE-2025-62348 via salt (=3007.14.0)
salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - heist-salt =1.0.0, =2019.12.0, =2019.6.28a3, =2.6.2.dev0, =2020.7.0, =1.1.1, =22.9.8.0rc1, =0.3.2, =0.5.7 - slskit =2022.4.0 Source cves:...
heist-salt (>=1.0.0 <=5.3.1), isalt (>=2019.12.0 <=2021.2.2) +9 more potentially affected by CVE-2025-22237 via salt (=3007.14.0)
salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - heist-salt =1.0.0, =2019.12.0, =2019.6.28a3, =2.6.2.dev0, =2020.7.0, =1.1.1, =22.9.8.0rc1, =0.3.2, =0.5.7 - slskit =2022.4.0 Source cves:...
heist-salt (>=1.0.0 <=5.3.1), isalt (>=2019.12.0 <=2021.2.2) +9 more potentially affected by CVE-2024-38825 via salt (=3007.14.0)
salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - heist-salt =1.0.0, =2019.12.0, =2019.6.28a3, =2.6.2.dev0, =2020.7.0, =1.1.1, =22.9.8.0rc1, =0.3.2, =0.5.7 - slskit =2022.4.0 Source cves:...
heist-salt (>=1.0.0 <=5.3.1), isalt (>=2019.12.0 <=2021.2.2) +9 more potentially affected by CVE-2024-38822 via salt (=3007.14.0)
salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - heist-salt =1.0.0, =2019.12.0, =2019.6.28a3, =2.6.2.dev0, =2020.7.0, =1.1.1, =22.9.8.0rc1, =0.3.2, =0.5.7 - slskit =2022.4.0 Source cves:...
heist-salt (>=1.0.0 <=5.3.1), isalt (>=2019.12.0 <=2021.2.2) +9 more potentially affected by CVE-2025-22240 via salt (=3007.14.0)
salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - heist-salt =1.0.0, =2019.12.0, =2019.6.28a3, =2.6.2.dev0, =2020.7.0, =1.1.1, =22.9.8.0rc1, =0.3.2, =0.5.7 - slskit =2022.4.0 Source cves:...
Security update for google-guest-agent
This update for google-guest-agent fixes the following issues: CVE-2025-22868: golang.org/x/oauth2/jws: Fixed unexpected memory consumption during token parsing bsc1239197 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypp...
多款SUSE产品安全漏洞
SUSE Linux Enterprise Server is an enterprise server edition of the Linux operating system from the German company SUSE. A security vulnerability exists in SUSE that stems from a problem with rmt-server and affects the following products and versions: SUSE Enterprise Storage 7, SUSE Linux...
netless Agora Flat Server 安全漏洞
The netless Agora Flat Server is a Node.js server for the Agora Flat open source classroom. A security vulnerability exists in netless Agora Flat Server, which stems from the remove API handling file ownership error in v1/controller/cloudStorage/alibabaCloud/remove/index.ts...
File Upload Vulnerability in YunMOK
YunMOK cloud module is a free website management system launched by Nanchong Tiger Cloud Network Technology Co. A file upload vulnerability exists in YunMOK, which can be exploited by attackers to gain access to the web server...
File Upload Vulnerability in YunMOK Backend
YunMOK cloud module is a free website management system launched by Nanchong Tiger Cloud Network Technology Co. A file upload vulnerability exists in the background of YunMOK, which can be exploited by attackers to gain control of the web server...
File Upload Vulnerability in YunMOk Background Resource File Management
YunMOk is a general website management system under Nanchong Tiger Cloud Network Technology Co. There is a file upload vulnerability in the background resource file management of the cloud module, which can be exploited by an attacker to gain access to website administrator privileges...
Cloud Module v3.1.01 has an xss vulnerability
Cloud module is a general website management system under Nanchong Tiger Cloud Network Technology Co. Cloud Module v3.1.01 has an xss vulnerability that can be exploited by an attacker to obtain an administrator cookie...
File Upload Vulnerability in Cloud Module
Cloud module is a general website management system under Nanchong Tiger Cloud Network Technology Co. Cloud module background template management file upload vulnerability, the vulnerability stems from the failure to filter the file suffix and dangerous functions, attackers can use the...
Arbitrary File Deletion Vulnerability in YunMok
YunMOK cloud module is a free website management system launched by Nanchong Tiger Cloud Network Technology Co., Ltd. can build a website without technology software system. Can help businesses and individuals to quickly build a website and reduce the costs associated with secondary development...
Arbitrary File Deletion Vulnerability in YunMOK 3.1.00
YunMOK cloud module is a free and open source website management system launched by Nanchong Tiger Cloud Network Technology Co. Can be no technology to build a website software system that can help businesses and individuals to quickly build a website and reduce the costs associated with secondar...
Drupal Cloud Module Cross-Site Request Forgery Vulnerability
Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.Services is one of the modules that allows users to programmatically create customized Web service items. A cross-site request forgery vulnerability exists in Drupal's Cloud module. An...