3 matches found
AstrBot 安全漏洞
AstrBot is an open-source multi-platform LLM chatbot and development framework created by AstrBot. Version 4.24.2 of AstrBot contains a security vulnerability. This vulnerability stems from improper handling of the sessionid parameter in the astrmainagent function within the...
Kimai 信息泄露漏洞
kimai is a web-based multi-user time tracking application from the individual developer of kimai. An information disclosure vulnerability exists in Kimai version 2.15.0 and prior versions, which stems from an incorrect manipulation of the PHPSESSIONID parameter that can lead to information...
PT-2023-8703 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: The issue is related to the improper validation of session id and tree id in compound requests in the Linux kernel's ksmbd module. Specifically, the smb2 get msg function in smb2 get...