Lucene search
K

86 matches found

Microsoft CVE
Microsoft CVE
added 2025/09/04 5:5 a.m.10 views

proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al

...

7.8CVSS6.9AI score0.00153EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/08/31 5:32 p.m.1 views

CVE-2025-9739 Campcodes Online Water Billing System process.php sql injection

A vulnerability has been found in Campcodes Online Water Billing System 1.0. Affected by this issue is some unknown functionality of the file /process.php. The manipulation of the argument Username leads to sql injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS7AI score0.00383EPSS
Exploits1References5
NVD
NVD
added 2025/08/26 6:15 a.m.6 views

CVE-2025-9475

A flaw has been found in SourceCodester Human Resource Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /AdminDashboard/process/editemployeeprocess.php. This manipulation of the argument employeefile201 causes unrestricted upload. The attack may be...

9.8CVSS0.00455EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-14102

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by...

7.8CVSS7.5AI score0.00358EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-38003

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: bcm: add missing rcu read protection for procfs content When the procfs content is generated for a bcmop which is in the process to be removed the procfs...

5.5CVSS6.8AI score0.002EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: polkit (TSSA-2022:0032)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0032 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

5.5CVSS6.6AI score0.0053EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:21 a.m.7 views

CVE-2024-3524

A vulnerability, which was classified as problematic, has been found in Campcodes Online Event Management System 1.0. This issue affects some unknown processing of the file /views/process.php. The manipulation of the argument name leads to cross site scripting. The attack may be initiated remotel...

5.4CVSS6AI score0.00494EPSS
Exploits1References1
OSV
OSV
added 2025/05/02 4:15 p.m.2 views

DEBIAN-CVE-2023-53118

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix a procfs host directory removal regression scsiprochostdirrm decreases a reference counter and hence must only be called once per host that is removed. This change does not require a scsiaddhostwithdma change sinc...

5.5CVSS5.5AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2025/04/29 12:15 p.m.5 views

CVE-2025-4058

A vulnerability classified as critical has been found in Projectworlds Online Examination System 1.0. This affects an unknown part of the file /Bloodgroopprocess.php. The manipulation of the argument PatBloodGroup1 leads to sql injection. It is possible to initiate the attack remotely. The exploi...

9.8CVSS5.8AI score0.00438EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/04/16 3:19 a.m.6 views

kernel: nfs: Handle error of rpc_proc_register() in nfs_net_init().

In the Linux kernel, the following vulnerability has been resolved: nfs: Handle error of rpcprocregister in nfsnetinit. syzkaller reported a warning 0 triggered while destroying immature netns. rpcprocregister was called in initnfsfs, but its error has been ignored since at least the initial comm...

5.5CVSS6.8AI score0.00233EPSS
Exploits0References5
OSV
OSV
added 2025/04/03 8:15 a.m.5 views

AZL-59604 CVE-2025-21999 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: proc: fix UAF in procgetinode Fix race between rmmod and /proc/XXX's inode instantiation. The bug is that pde-procops don't belong to /proc, it belongs to a module, therefore dereferencing it after /proc entry has been registered...

7.8CVSS6.5AI score0.00193EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/03/11 6:44 a.m.8 views

kernel: can: bcm: Fix UAF in bcm_proc_show()

In the Linux kernel, the following vulnerability has been resolved: can: bcm: Fix UAF in bcmprocshow BUG: KASAN: slab-use-after-free in bcmprocshow+0x969/0xa80 Read of size 8 at addr ffff888155846230 by task cat/7862 CPU: 1 PID: 7862 Comm: cat Not tainted 6.5.0-rc1-00153-gc8746099c197 230 Hardwar...

7.8CVSS6.6AI score0.00286EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-4115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. The highest threat from this...

5.5CVSS6.5AI score0.0053EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/02/05 11:41 a.m.3 views

kernel: scsi: core: Fix unremoved procfs host directory regression

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix unremoved procfs host directory regression The Linux kernel CVE team has assigned CVE-2024-26935 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024050124-CVE-2024-26935-8b4e@gregkh/T...

5.5CVSS6.8AI score0.00242EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/01/20 3:47 a.m.2 views

SUSE CVE-2025-21646

In the Linux kernel, the following vulnerability has been resolved: afs: Fix the maximum cell name length The kafs filesystem limits the maximum length of a cell to 256 bytes, but a problem occurs if someone actually does that: kafs tries to create a directory under /proc/net/afs/ with the name o...

5.5CVSS7.6AI score0.002EPSS
Exploits0References14
OSV
OSV
added 2024/12/29 4:15 a.m.2 views

CVE-2024-13002

A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /orderprocess.php. The manipulation of the argument fnm leads to sql injection. The attack can be launched remotely...

9.8CVSS5.8AI score0.00636EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2024/12/29 3:31 a.m.6 views

CVE-2024-13002 1000 Projects Bookstore Management System order_process.php sql injection

A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /orderprocess.php. The manipulation of the argument fnm leads to sql injection. The attack can be launched remotely...

7.5CVSS7AI score0.00636EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/12/29 12:0 a.m.4 views

PT-2024-17862 · Unknown · 1000 Projects Bookstore Management System

Name of the Vulnerable Software and Affected Versions: 1000 Projects Bookstore Management System version 1.0 Description: A critical issue has been found in the 1000 Projects Bookstore Management System. It affects an unknown functionality of the file /order process.php. The manipulation of the f...

9.8CVSS8.1AI score0.00636EPSS
Exploits1References14
OSV
OSV
added 2024/12/26 2:15 p.m.6 views

CVE-2024-12953

A vulnerability, which was classified as critical, has been found in 1000 Projects Portfolio Management System MCA 1.0. Affected by this issue is some unknown functionality of the file /updatepdprocess.php. The manipulation of the argument profile leads to unrestricted upload. The attack may be...

9.8CVSS5.5AI score0.00698EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/12/26 12:0 a.m.11 views

PT-2024-17825 · Unknown · 1000 Projects Portfolio Management System Mca

Name of the Vulnerable Software and Affected Versions: 1000 Projects Portfolio Management System MCA version 1.0 Description: A critical issue has been found in the 1000 Projects Portfolio Management System MCA, affecting some unknown functionality of the file /update pd process.php. The...

9.8CVSS7.3AI score0.00698EPSS
Exploits1References10
Rows per page
Query Builder