99 matches found
EUVD-2006-3410
Malware in sbrugna...
EUVD-2015-8858
Malware in sbrugna...
EUVD-2022-2517
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2016-6753
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in kernel components, including the process-grouping subsystem and the networking subsystem, in Android before 2016-11-0...
Linux Distros Unpatched Vulnerability : CVE-2016-10728
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Suricata before 3.1.2. If an ICMPv4 error packet is received as the first packet on a flow in the toclient direction, it confuses the...
When Data-Free Knowledge Distillation Meets Non-Transferable Teacher: Escaping Out-Of-Distribution Trap Is All You Need
Data-free knowledge distillation DFKD transfers knowledge from a teacher to a student without access the real in-distribution ID data. Its common solution is to use a generator to synthesize fake data and use them as a substitute for real ID data. However, existing works typically assume teachers...
Optimal Client Sampling in Federated Learning with Client-Level Heterogeneous Differential Privacy
Federated Learning with client-level differential privacy DP provides a promising framework for collaboratively training models while rigorously protecting clients' privacy. However, classic approaches like DP-FedAvg struggle when clients have heterogeneous privacy requirements, as they must...
The Voynich Codex Decoded: Statistical Symbolism and Scroll-Wide Logic
This paper introduces a structured decoding framework for the Voynich Manuscript, based on mathematical rhythm, symbolic transformation, and glyph-level recursion. Rather than interpret symbols phonetically, this method decodes them by structural roles and spatial pacing. Using scroll-wide...
Moodle 安全漏洞
Moodle is an open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. A permission issue vulnerability exists in Moodle. The vulnerability stems from a permission check that does not properly consider grouping...
DRUPAL-CONTRIB-2024-052
This module enables you to group nodes within pages that have a highly-granular, distributed permissions structure. In certain cases the module doesn't sufficiently sanitize data before passing it to PHP's unserialize function, which can result in arbitrary code execution...
Hfinger - Fingerprinting HTTP Requests
Tool for Fingerprinting HTTP requests of malware. Based on Tshark and written in Python3. Working prototype stage :- Its main objective is to provide unique representations fingerprints of malware requests, which help in their identification. Unique means here that each fingerprint should be seen...
JetBrains TeamCity Reports Grouping and Filtering Operations Cross-Site Scripting Vulnerability
JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. A cross-site scripting vulnerability exists in...
CVE-2024-36366
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 an XSS could be executed via certain report grouping and filtering operations...
CVE-2024-36366
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 an XSS could be executed via certain report grouping and filtering operations...
CVE-2024-36366
JetBrains TeamCity vulnerability CVE-2024-36366 is a cross-site scripting flaw in report grouping/filtering. Affects TeamCity versions prior to 2022.04.7, 2022.10.6, 2023.05.6, and 2023.11.5 due to lack of proper filtering/escaping of user-supplied data. Impact: possible execution of arbitrary sc...
CVE-2024-36366
In JetBrains TeamCity before 2022.04.7, 2022.10.6, 2023.05.6, 2023.11.5 an XSS could be executed via certain report grouping and filtering operations...
PT-2024-3935
Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2022.04.7 JetBrains TeamCity versions prior to 2022.10.6 JetBrains TeamCity versions prior to 2023.05.6 JetBrains TeamCity versions prior to 2023.11.5 Description: The issue allows for an XSS attack to be...
PT-2024-40985 · Kubevirt · Kubevirt
Name of the Vulnerable Software and Affected Versions: kubevirt and related containers affected versions not specified Description: The issue is related to a rebuild against current security updates. Additionally, there are mentions of installing qemu-hw-usb-host to enable USB passthrough, groupi...
CVE-2023-6459 Public endpoint /metrics of Calls plugin reveals channel IDs
Mattermost is grouping calls in the /metrics endpoint by id and reports that id in the response. Since this id is the channelID, the public /metrics endpoint is revealing channelIDs...
mariadb: crash in multi-update and implicit grouping
An assertion failure was found in the MariaDB Server. This issue is via, 'node-pcur-relpos == BTRPCURON' at /row/row0mysql.cc, affecting availability...