EUVD-2026-27872

gopls by default communicates via pipe. However, -port and -listen flags are supported as means of debugging. If -listen is given a value without an explicit host e.g. :8080, or -port is used, gopls will listen on 0.0.0.0. As a result, users might inadvertently cause gopls to bind 0.0.0.0. This...

Prototype Pollution

SandboxJS is vulnerable to Prototype Pollution. The vulnerability is due to improper handling of the isGlobal protection flag, where wrapping a host global prototype in an array strips its taint and allows sandboxed code to mutate host built-in prototypes, leading to prototype pollution and...

MiracleLinux 3 : firefox-3.6.23-2.0.1.AXS3, xulrunner-1.9.2.23-1.0.1.AXS3 (AXSA:2011-322:07)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2011-322:07 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security issues fixed with this releas...

Linux Distros Unpatched Vulnerability : CVE-2024-2614

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory safety bugs present in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8. Some of these bugs showed evidence of memory corruption and we presume that...

PT-2008-5592 · Numedia Soft · Nms Dvd Burning Sdk

Name of the Vulnerable Software and Affected Versions: NuMedia Soft NMS DVD Burning SDK Activex NMSDVDX.DVDEngineX.1 version 1.013C and earlier Description: The issue allows remote attackers to overwrite and create arbitrary files via calls to the EnableLog and LogMessage methods. This can...