Lucene search
K

2121 matches found

OSV
OSV
added 2024/07/12 1:15 p.m.1 views

DEBIAN-CVE-2024-41005

In the Linux kernel, the following vulnerability has been resolved: netpoll: Fix race condition in netpollowneractive KCSAN detected a race condition in netpoll: BUG: KCSAN: data-race in netrxaction / netpollsendskb write marked to 0xffff8881164168b0 of 4 bytes by interrupt on cpu 10: netrxaction...

4.7CVSS5.5AI score0.0019EPSS
Exploits0References1
OSV
OSV
added 2024/07/12 1:15 p.m.2 views

UBUNTU-CVE-2024-41005

In the Linux kernel, the following vulnerability has been resolved: netpoll: Fix race condition in netpollowneractive KCSAN detected a race condition in netpoll: BUG: KCSAN: data-race in netrxaction / netpollsendskb write marked to 0xffff8881164168b0 of 4 bytes by interrupt on cpu 10: netrxaction...

4.7CVSS6.2AI score0.0019EPSS
Exploits0References22
Packet Storm
Packet Storm
added 2024/07/11 12:0 a.m.424 views

WordPress Poll Maker 5.3.2 SQL Injection

Exploit Title: WordPress Poll Maker Plugin SQL Injection Date: 2024-07-11 Exploit Author: tmrswrr Category : Webapps Vendor: https://ays-pro.com/wordpress/poll-maker Version 5.3.2 1. Access the Admin Panel: - Navigate to the admin panel of your WordPress site. - Go to Poll Maker Results...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/07/09 12:0 a.m.141 views

WordPress Poll 2.3.6 SQL Injection Vulnerability

Exploit Title: WordPress Poll Plugin SQL Injection Exploit Author: tmrswrr Category : Webapps Vendor Homepage: https://total-soft.com/wp-poll/ Version 2.3.6 1. Access the Admin Panel: - Navigate to the admin panel of your WordPress site. - Go to TS Poll Create Pool Use Theme and save it...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2024/07/08 3:3 a.m.9 views

kernel: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll context

An operation precedence flaw was found in the Linux kernel’s Mellanox Technologies networking driver. This flaw allows a local user to crash the system or potentially gain access to data that should not be accessible...

7.1CVSS6.8AI score0.00237EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/07/08 2:5 a.m.4 views

kernel: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll context

An operation precedence flaw was found in the Linux kernel’s Mellanox Technologies networking driver. This flaw allows a local user to crash the system or potentially gain access to data that should not be accessible...

7.1CVSS6.8AI score0.00237EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2024/07/08 12:0 a.m.308 views

WordPress Poll 2.3.6 SQL Injection

Exploit Title: WordPress Poll Plugin SQL Injection Date: 2024-07-06 Exploit Author: tmrswrr Category : Webapps Vendor Homepage: https://total-soft.com/wp-poll/ Version 2.3.6 1. Access the Admin Panel: - Navigate to the admin panel of your WordPress site. - Go to TS Poll Create Pool Use Theme and...

7.4AI score
Exploits0
OSV
OSV
added 2024/07/03 6:15 a.m.2 views

CVE-2024-2235

The Himer WordPress theme before 2.1.1 does not have CSRF checks in some places, which could allow attackers to make users vote on any polls, including those they don't have access to via a CSRF attack...

4.3CVSS5.8AI score0.00193EPSS
Exploits2References1
CVE
CVE
added 2024/07/03 6:0 a.m.73 views

CVE-2024-2235

The CVE-2024-2235 entry concerns the Himer WordPress theme pre-2.1.1 lacking CSRF checks in multiple areas, enabling CSRF-based vote manipulation on polls (including restricted ones). Affected product: Himer WordPress theme

6.3CVSS4.5AI score0.00193EPSS
Exploits2References1Affected Software1
RedHat Linux
RedHat Linux
added 2024/07/02 9:2 a.m.3 views

kernel: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll context

An operation precedence flaw was found in the Linux kernel’s Mellanox Technologies networking driver. This flaw allows a local user to crash the system or potentially gain access to data that should not be accessible...

7.1CVSS6.8AI score0.00237EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/07/02 9:2 a.m.3 views

kernel: block: null_blk: end timed out poll request

In the Linux kernel, the following vulnerability has been resolved: block: nullblk: end timed out poll request When poll request is timed out, it is removed from the poll list, but not completed, so the request is leaked, and never get chance to complete. Fix the issue by ending it in timeout...

5.5CVSS6.8AI score0.00209EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/06/22 3:35 a.m.2 views

SUSE CVE-2024-38553

In the Linux kernel, the following vulnerability has been resolved: net: fec: remove .ndopollcontroller to avoid deadlocks There is a deadlock issue found in sungem driver, please refer to the commit ac0a230f719b "eth: sungem: remove .ndopollcontroller to avoid deadlocks". The root cause of the...

4.7CVSS6.1AI score0.00193EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2024/06/22 3:34 a.m.3 views

SUSE CVE-2024-38597

In the Linux kernel, the following vulnerability has been resolved: eth: sungem: remove .ndopollcontroller to avoid deadlocks Erhard reports netpoll warnings from sungem: netpollsendskbondev: eth0 enabled interrupts in poll gemstartxmit+0x0/0x398 WARNING: CPU: 1 PID: 1 at net/core/netpoll.c:370...

4.4CVSS6.2AI score0.00178EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2024/06/21 3:6 a.m.2 views

SUSE CVE-2024-38580

In the Linux kernel, the following vulnerability has been resolved: epoll: be better about file lifetimes epoll can call out to vfspoll with a file pointer that may race with the last 'fput'. That would make fcount go down to zero, and while the ep-mtx locking means that the resulting file pointe...

4.4CVSS6.2AI score0.00225EPSS
Exploits0References16
Debian CVE
Debian CVE
added 2024/06/20 11:13 a.m.16 views

CVE-2022-48745

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Use deltimersync in fw reset flow of halting poll Substitute deltimer with deltimersync in fw reset polling deactivation flow, in order to prevent a race condition which occurs when deltimer is called and timer is...

4.7CVSS5.7AI score0.00178EPSS
Exploits0
OSV
OSV
added 2024/06/19 2:15 p.m.0 views

DEBIAN-CVE-2024-38580

In the Linux kernel, the following vulnerability has been resolved: epoll: be better about file lifetimes epoll can call out to vfspoll with a file pointer that may race with the last 'fput'. That would make fcount go down to zero, and while the ep-mtx locking means that the resulting file pointe...

4.7CVSS5.4AI score0.00225EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 2:15 p.m.5 views

AZL-48252 CVE-2024-38553 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: net: fec: remove .ndopollcontroller to avoid deadlocks There is a deadlock issue found in sungem driver, please refer to the commit ac0a230f719b "eth: sungem: remove .ndopollcontroller to avoid deadlocks". The root cause of the...

5.5CVSS6.1AI score0.00193EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 2:15 p.m.1 views

DEBIAN-CVE-2024-38553

In the Linux kernel, the following vulnerability has been resolved: net: fec: remove .ndopollcontroller to avoid deadlocks There is a deadlock issue found in sungem driver, please refer to the commit ac0a230f719b "eth: sungem: remove .ndopollcontroller to avoid deadlocks". The root cause of the...

5.5CVSS5.3AI score0.00193EPSS
Exploits0References1
OSV
OSV
added 2024/06/19 2:15 p.m.8 views

UBUNTU-CVE-2024-38597

In the Linux kernel, the following vulnerability has been resolved: eth: sungem: remove .ndopollcontroller to avoid deadlocks Erhard reports netpoll warnings from sungem: netpollsendskbondev: eth0 enabled interrupts in poll gemstartxmit+0x0/0x398 WARNING: CPU: 1 PID: 1 at net/core/netpoll.c:370...

5.5CVSS6AI score0.00178EPSS
Exploits0References32
WPVulnDB
WPVulnDB
added 2024/06/12 12:0 a.m.12 views

Himer - Social Questions and Answers < 2.1.1 - Bypass Poll Voting Restrictions via CSRF

Description The theme does not have CSRF checks in some places, which could allow attackers to make users vote on any polls, including those they don't have access to via a CSRF attack PoC The PoC will be displayed on June 26, 2024, to give users the time to update...

6.4AI score0.00193EPSS
Exploits2Affected Software1
Rows per page
Query Builder