6493 matches found
iov_iter: fix copy_page_from_iter_atomic() if KMAP_LOCAL_FORCE_MAP
...
bpf, sockmap: Several fixes to bpf_msg_pop_data
...
PCI: endpoint: epf-mhi: Avoid NULL dereference if DT lacks 'mmio'
...
mm: resolve faulty mmap_region() error path behaviour
...
PT-2025-11015
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the handling of freeze mutex during memory mapping BPF map contents with writable permissions. The issue could...
WordPress BMLT Meeting Map plugin <= 2.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by yudha in WordPress Plugin BMLT Meeting Map versions = 2.6.1...
CVE-2024-12494
The BMLT Meeting Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bmltmeetingmap' shortcode in all versions up to, and including, 2.6.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2024-12494
The BMLT Meeting Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bmltmeetingmap' shortcode in all versions up to, and including, 2.6.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2024-12494 BMLT Meeting Map <= 2.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
The BMLT Meeting Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bmltmeetingmap' shortcode in all versions up to, and including, 2.6.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
CVE-2024-12494
CVE-2024-12494 (BMLT Meeting Map, WordPress) is a stored cross-site scripting vulnerability in the BMLT Meeting Map plugin for WordPress. All versions up to and including 2.6.1 are affected due to insufficient input sanitization and output escaping on user-supplied attributes used by the bmlt_mee...
CVE-2024-12494 BMLT Meeting Map <= 2.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
The BMLT Meeting Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bmltmeetingmap' shortcode in all versions up to, and including, 2.6.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
SUSE CVE-2024-57947
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the size of the first field, not the total field size. After each round in the map search step, the result a...
WordPress plugin BMLT Meeting Map 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...
PT-2025-1867 · WordPress · Bmlt Meeting Map
Name of the Vulnerable Software and Affected Versions: BMLT Meeting Map plugin for WordPress versions up to, and including, 2.6.1 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the plugin's bmlt meeting map shortcode. This...
DEBIAN-CVE-2024-57947
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the size of the first field, not the total field size. After each round in the map search step, the result a...
CVE-2024-57947
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the size of the first field, not the total field size. After each round in the map search step, the result a...
UBUNTU-CVE-2024-57947
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the size of the first field, not the total field size. After each round in the map search step, the result a...
CVE-2024-57947
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the size of the first field, not the total field size. After each round in the map search step, the result a...
CVE-2024-57947
The CVE-2024-57947 issue in the Linux kernel concerns netfilter nf_set_pipapo: the initial map fill must initialize the buffer to all-ones only up to the size of the first field. If the first element’s bsize is smaller than m->bsize_max, one-bits leak into later rounds, causing nf_set_pipapo t...
CVE-2024-57947 netfilter: nf_set_pipapo: fix initial map fill
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the size of the first field, not the total field size. After each round in the map search step, the result a...