Improper Handling of Highly Compressed Data (Data Amplification)

Overview Affected versions of this package are vulnerable to Improper Handling of Highly Compressed Data Data Amplification in ZstdUtil. An attacker can cause degradation in performance by sending very large compressed data. Remediation There is no fixed version for io.seata:seata-compressor-zstd...

Linux Distros Unpatched Vulnerability : CVE-2024-26647

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Fix late derefrence 'dsc' check in 'linksetdscppspacket' In linksetdscppspacket, 'struct displaystreamcompressor dsc' was dereferenced in a...

PT-2025-18426

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock vulnerability has been identified in the Linux kernel, specifically in the hibernate compressor param set function. This issue arises when attempting to acquire the system...

RLSA-2025:0733 Moderate: bzip2 security update

The bzip2 packages contain a freely available, high-quality data compressor. It provides both standalone compression and decompression utilities, as well as a shared library for use with other programs. Security Fixes: bzip2: bzip2: Data integrity error when decompressing with data integrity test...

CVE-2025-1169

A vulnerability was found in SourceCodester Image Compressor Tool 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /image-compressor/compressor.php. The manipulation of the argument image leads to cross site scripting. The attack may be initiated...

CVE-2025-1169

A vulnerability was found in SourceCodester Image Compressor Tool 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /image-compressor/compressor.php. The manipulation of the argument image leads to cross site scripting. The attack may be initiated...

CVE-2025-1169 SourceCodester Image Compressor Tool compressor.php cross site scripting

A vulnerability was found in SourceCodester Image Compressor Tool 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /image-compressor/compressor.php. The manipulation of the argument image leads to cross site scripting. The attack may be initiated...

CVE-2025-1169 SourceCodester Image Compressor Tool compressor.php cross site scripting

A vulnerability was found in SourceCodester Image Compressor Tool 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /image-compressor/compressor.php. The manipulation of the argument image leads to cross site scripting. The attack may be initiated...

CVE-2025-1169

SourceCodester Image Compressor Tool 1.0 contains a cross-site scripting flaw in /image-compressor/compressor.php triggered by manipulating the image parameter. The vulnerability affects unknown processing and can be exploited remotely; public disclosures exist. Some sources note a practical work...

PT-2025-6143 · Sourcecodester · Sourcecodester Image Compressor Tool

Name of the Vulnerable Software and Affected Versions: SourceCodester Image Compressor Tool version 1.0 Description: A problem has been found in the processing of the file /image-compressor/compressor.php, which can lead to cross site scripting when the image argument is manipulated. The attack c...

SourceCodester Image Compressor Tool 跨站脚本漏洞

SourceCodester Image Compressor Tool is an open source image compression tool from Sourcecodester. A cross-site scripting vulnerability exists in SourceCodester Image Compressor Tool version 1.0, which stems from an incorrect manipulation of the parameter image that can lead to cross-site scripti...

CVE-2022-39224

Arr-pm is an RPM reader/writer library written in Ruby. Versions prior to 0.0.12 are subject to OS command injection resulting in shell execution if the RPM contains a malicious "payload compressor" field. This vulnerability impacts the extract and files methods of the RPM::File class of this...

CVE-2024-28028

Improper input validation in some IntelR Neural Compressor software before version v3.0 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...

CVE-2024-22476

Improper input validation in some IntelR Neural Compressor software before version 2.5.0 may allow an unauthenticated user to potentially enable escalation of privilege via remote access...

CVE-2024-39766

Improper neutralization of special elements used in SQL command in some IntelR Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable escalation of privilege via local access...

Moderate: bzip2 security update

The bzip2 packages contain a freely available, high-quality data compressor. It provides both standalone compression and decompression utilities, as well as a shared library for use with other programs. Security Fixes: bzip2: bzip2: Data integrity error when decompressing with data integrity test...

CVE-2024-37181

Time-of-check time-of-use race condition in some IntelR Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable information disclosure via adjacent access...

CVE-2024-37181

The CVE-2024-37181 issue affects Intel® Neural Compressor software before version v3.0. It is a time-of-check time-of-use race condition that can allow an authenticated user to potentially disclose information via adjacent access. The advisory and multiple security feeds confirm the affected comp...

CVE-2024-37181

Time-of-check time-of-use race condition in some IntelR Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable information disclosure via adjacent access...

CVE-2024-37181

Time-of-check time-of-use race condition in some IntelR Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable information disclosure via adjacent access...