Amazon Linux 2023 : python3.11, python3.11-devel, python3.11-idle (ALAS2023-2023-252)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-252 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks ...

Oracle Virtualization 安全漏洞

Oracle Virtualization is a set of virtualization solutions from Oracle Corporation. The product is used to unify the management of the entire hardware and software architecture from applications to disk, enabling virtualization from the desktop to the data center.VM VirtualBox is one of the virtu...

Oracle Fusion Middleware 安全漏洞

Oracle Fusion Middleware Oracle Fusion Middleware and Oracle WebLogic Server are both products of Oracle Corporation.Oracle Fusion Middleware is a business innovation platform for enterprise and cloud environments. The platform provides middleware, software collections, and more.Oracle WebLogic...

CVE-2023-37136

A stored cross-site scripting XSS vulnerability in the Basic Website Information module of eyoucms v1.6.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

CVE-2023-37238

Vulnerability of apps' permission to access a certain API being incompletely verified in the wireless projection module. Successful exploitation of this vulnerability may affect some wireless projection features...

PT-2023-15839 · Gallery · Gallery

Name of the Vulnerable Software and Affected Versions: Gallery module affected versions not specified Description: The issue concerns a vulnerability in the identity verification process of the Gallery module, which can be bypassed. This could potentially lead to out-of-bounds access if...

PT-2023-15833 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue concerns a vulnerability where identity verification can be bypassed in the storage module. This could potentially affect service confidentiality. There is no information...

SolusVM-WHMCS-Module 安全漏洞

SolusVM-WHMCS-Module is a module. A security vulnerability exists in SolusVM-WHMCS-Module version 4.1.2 that originates from allowing an attacker to make unauthorized changes to passwords and hostnames of other client servers...

PT-2023-12611 · Huawei · Emui +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns incomplete read and write permission verification in the GPU module. Successful exploitation may affect service confidentiality,...

CVE-2022-48499

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability...

CVE-2023-35808

An issue was discovered in SugarCRM Enterprise before 11.0.6 and 12.x before 12.0.3. An Unrestricted File Upload vulnerability has been identified in the Notes module. By using crafted requests, custom PHP code can be injected and executed through the Notes module because of missing input...

CVE-2023-31672

In the PrestaShop 2.4.3 module "Length, weight or volume sell" ailinear there is a SQL injection vulnerability...

PT-2023-33077 · Ibc-Go · Ibc-Go

Name of the Vulnerable Software and Affected Versions: ibc-go module affected versions not specified Description: The issue is related to the Inter-Blockchain Communication IBC protocol, specifically the "Huckleberry" vulnerability. Recommendations: At the moment, there is no information about a...

CVE-2023-1696

The multimedia video module has a vulnerability in data processing.Successful exploitation of this vulnerability may affect availability...

CVE-2023-1693

The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confidentiality...

Ideasoft E-commerce Platform 代码问题漏洞

Ideasoft E-commerce Platform is an open source e-commerce platform from Ideasoft. Ideasoft E-commerce Platform before version 23.05 there is a code issue vulnerability, the vulnerability stems from the Rental Module has a dangerous type of file unrestricted upload vulnerability, allowing command...

PT-2023-17176 · Unknown · Settings Module

Name of the Vulnerable Software and Affected Versions: Settings module affected versions not specified Description: The issue concerns a file privilege escalation vulnerability in the Settings module. Successful exploitation of this vulnerability may affect confidentiality. Recommendations: At th...

CVE-2022-25275

In some situations, the Image module does not correctly check access to image files not stored in the standard public files directory when generating derivative images using the image styles system. Access to a non-public file is checked only if it is stored in the "private" file system. However,...

CVE-2022-48314

The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality...

PT-2023-15693 · Unknown · Bluetooth Module

Name of the Vulnerable Software and Affected Versions: Bluetooth module affected versions not specified Description: The issue concerns a problem with the Bluetooth module where it is possible to bypass user confirmation during the pairing process. This could potentially impact confidentiality...