CBL Mariner 2.0 Security Update: kernel (CVE-2024-56603)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56603 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: afcan: do not leave a dangling sk...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56754)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56754 advisory. - In the Linux kernel, the following vulnerability has been resolved: crypto: caam - Fix the pointer passed to...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-53161)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53161 advisory. - In the Linux kernel, the following vulnerability has been resolved: EDAC/bluefield: Fix potential integer...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-56754)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56754 advisory. - In the Linux kernel, the following vulnerability has been resolved: crypto: caam - Fix the pointer passed to...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-56756)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56756 advisory. - In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix freeing of the HMB...

Unbreakable Enterprise kernel security update

5.15.0-306.177.4 - Revert 'usb: gadget: userial: Disable ep before setting port to null to fix the crash caused by port being null' Greg Kroah-Hartman - drm/v3d: Assign job pointer to NULL before signaling the fence Maira Canal - scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sys...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-56567)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56567 advisory. - In the Linux kernel, the following vulnerability has been resolved: ad7780: fix division by zero in...

CVE-2025-1363

The URL Shortener | Conversion Tracking | AB Testing | WooCommerce WordPress plugin through 9.0.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is...

CVE-2025-1362

The URL Shortener | Conversion Tracking | AB Testing | WooCommerce WordPress plugin through 9.0.2 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting customers via CSRF attacks...

CVE-2025-1363

CVE-2025-1363 affects the WordPress plugin “URL Shortener | Conversion Tracking | AB Testing | WooCommerce” (versions up to 9.0.2). The vulnerability is a Stored Cross-Site Scripting (XSS) that occurs due to insufficient sanitisation/escaping of certain plugin settings, enabling a high-privilege ...

CVE-2024-13868

The URL Shortener | Conversion Tracking | AB Testing | WooCommerce WordPress plugin through 9.0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

Exploit for CVE-2025-26055

CVE-2025-26055 CVE Description Author : Rohan Deshpande...

CVE-2025-2084

A vulnerability was found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /search-report.php of the component Search Report Page. The manipulation leads to cross site scripting. It is possible to...

CVE-2025-2084 PHPGurukul Human Metapneumovirus Testing Management System Search Report Page search-report.php cross site scripting

A vulnerability was found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /search-report.php of the component Search Report Page. The manipulation leads to cross site scripting. It is possible to...

Nipah virus Testing Management System check_availability.php File SQL Injection Vulnerability

Nipah Virus Testing Management System is an online virus diagnostic platform. The Nipah Virus Testing Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the checkavailability.php file. An attacker can exploit...

Human Metapneumovirus Testing Management System /login.php File SQL Injection Vulnerability

Human Metapneumovirus Testing Management System is a human subpneumovirus testing management system. Human Metapneumovirus Testing Management System is vulnerable to a SQL injection vulnerability that affects the username parameter in the /login.php file. No details of the vulnerability are...

Human Metapneumovirus (HMPV) – Testing Management System 代码注入漏洞

Human Metapneumovirus HMPV - Testing Management System is a PHP and MySQL based system developed to manage human lung virus testing. A code injection vulnerability exists in Human Metapneumovirus HMPV - Testing Management System version 1.0, which stems from improper manipulation of the...

CVE-2024-13868

The URL Shortener | Conversion Tracking | AB Testing | WooCommerce WordPress plugin through 9.0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

UniRide Vehicle Booking Management System 1.0 Insecure Direct Object Reference

UniRide Vehicle Booking Management System version 1.0 suffers from an insecure direct object reference vulnerability. ============================================================================================================================================= | Title : UniRide Vehicle Booking...

Linux Distros Unpatched Vulnerability : CVE-2024-57917

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: topology: Keep the cpumask unchanged when printing cpumap During fuzz testing, the following...