1211 matches found
Exploit for CVE-2025-49132
██████╗██╗ ██╗██████╗ ███████╗██████╗ ██████╗ █████╗ ███...
Exploit for CVE-2025-49132
CVE-2025-49132 - Pterodactyl Panel Unauthenticated RCE...
Malicious Package
Overview @rsgweb/locale-tools is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in @rsgweb/locale-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b1882e2ffa769f9383127f2bfc582935b3bb1145e172eb6941a0276989a983f The package @rsgweb/locale-tools was found to contain malicious code. Source: ghsa-malware...
MAL-2026-786 Malicious code in @rsgweb/locale-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b1882e2ffa769f9383127f2bfc582935b3bb1145e172eb6941a0276989a983f The package @rsgweb/locale-tools was found to contain malicious code. Source: ghsa-malware...
Atlassian Jira Service Management Data Center and Server 11.2.0 < 11.2.1 (JSDSERVER-16458)
The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16458 advisory. - UNSUPPORTED WHEN ASSIGNED The value set as the DefaultLocaleResolver.LOCALEKEY attribute on the...
Security Bulletin: IBM OpenPages for Cloud Pak for Data is Vulnerable to Multiple Spring Framework Vulnerabilities (CVE-2024-38820,CVE-2025-22233)
Summary Spring MVC controller vulnerable to a DoS attack and DataBinder Case Sensitive Match Exception. These vulnerabilities were remediated. Vulnerability Details CVEID:CVE-2024-38820 DESCRIPTION: The fix for CVE-2022-22968 made disallowedFields patterns in DataBinder case insensitive. However,...
MiracleLinux 7 : libX11-1.6.7-3.el7 (AXSA:2020-865:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-865:01 advisory. libX11: integer overflow leads to double free in locale handling CVE-2020-14363 Tenable has extracted the preceding description block directly from the...
MiracleLinux 4 : perl-5.10.1-130.AXS4 (AXSA:2013-320:01)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-320:01 advisory. Perl is a high-level programming language with roots in C, sed, awk and shell scripting. Perl is good at handling processes and files, and is...
MiracleLinux 3 : perl-5.8.8-40.0.1.AXS3 (AXSA:2013-340:01)
The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-340:01 advisory. Perl is a high-level programming language with roots in C, sed, awk and shell scripting. Perl is good at handling processes and files, and is...
MiracleLinux 4 : glibc-2.12-1.132.AXS4.4 (AXSA:2014-509:05)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-509:05 advisory. Description : The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory...
MiracleLinux 4 : glibc-2.12-1.47.AXS4.5 (AXSA:2012-123:02)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-123:02 advisory. The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as t...
MiracleLinux 4 : libvirt-0.9.10-21.5.0.1.AXS4 (AXSA:2012-975:04)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-975:04 advisory. Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the...
CVE-2021-47749
YouPHPTube = 7.8 contains a local file inclusion vulnerability that allows unauthenticated attackers to access arbitrary files by manipulating the 'lang' parameter in GET requests. Attackers can exploit the path traversal flaw in locale/function.php to include and view PHP files outside the...
CVE-2021-47749
YouPHPTube = 7.8 contains a local file inclusion vulnerability that allows unauthenticated attackers to access arbitrary files by manipulating the 'lang' parameter in GET requests. Attackers can exploit the path traversal flaw in locale/function.php to include and view PHP files outside the...
CVE-2021-47749
YouPHPTube
CVE-2021-47749 YouPHPTube <= 7.8 - Directory Traversal
YouPHPTube = 7.8 contains a local file inclusion vulnerability that allows unauthenticated attackers to access arbitrary files by manipulating the 'lang' parameter in GET requests. Attackers can exploit the path traversal flaw in locale/function.php to include and view PHP files outside the...
CVE-2016-10840
cPanel before 11.54.0.4 allows arbitrary code execution during locale duplication SEC-72...
Security Bulletin: Multiple vulnerabilities in IBM Controller
Summary Multiple vulnerabilities were addressed in IBM Controller 11.1.2. Vulnerability Details CVEID:CVE-2024-38820 DESCRIPTION: The fix for CVE-2022-22968 made disallowedFields patterns in DataBinder case insensitive. However, String.toLowerCase has some Locale dependent exceptions that could...
Security Bulletin: Vulnerability in IBM DevOps Solution Workbench
Summary The following vulnerability was addressed in IBM DevOps Solution Workbench version 5.1. Vulnerability Details CVEID:CVE-2024-38820 DESCRIPTION: The fix for CVE-2022-22968 made disallowedFields patterns in DataBinder case insensitive. However, String.toLowerCase has some Locale dependent...