Lucene search
K

4350 matches found

Positive Technologies
Positive Technologies
added 2024/12/27 12:0 a.m.4 views

PT-2024-35658 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel. The issue is related to the net/l2tp module, specifically in the l2tp exit net function. The problem occurs when the IDR ID...

7.3AI score0.00182EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/12/25 12:0 a.m.5 views

PT-2024-36815 · Theora +3 · Theora +3

Name of the Vulnerable Software and Affected Versions: Theora versions up to 1.0 7180717 Description: The issue is related to an invalid negative left shift in the oc huff tree unpack function in huffdec.c within libtheora, as used in Theora. This function contains a problem that can be exploited...

10CVSS6AI score0.01921EPSS
Exploits1References53
Debian CVE
Debian CVE
added 2024/12/25 12:0 a.m.9 views

CVE-2024-56431

ochufftreeunpack in huffdec.c in libtheora in Theora through 1.0 7180717 has an invalid negative left shift. NOTE: this is disputed by third parties because there is no evidence of a security impact, e.g., an application would not crash...

9.8CVSS6.5AI score0.01817EPSS
Exploits1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/23 5:58 p.m.4 views

Malicious code in tree-sitter-dockerfile (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 345b2afbf518dc7083621e0f9fb5e7e8b109a319cc7aec619f17c7aa9b18deca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References1
OSV
OSV
added 2024/12/23 5:58 p.m.5 views

MAL-2024-12112 Malicious code in tree-sitter-dockerfile (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 345b2afbf518dc7083621e0f9fb5e7e8b109a319cc7aec619f17c7aa9b18deca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2024/12/23 8:36 a.m.8 views

MAL-2024-12100 Malicious code in tree-sitter-r (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 245c8ac9e9a17d5087161ac19522605901bd29822d69603d3ffaf8b5fe808945 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/23 8:36 a.m.5 views

Malicious code in tree-sitter-r (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 245c8ac9e9a17d5087161ac19522605901bd29822d69603d3ffaf8b5fe808945 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/20 12:0 a.m.8 views

PT-2025-3612

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74 Description A use-after-free issue was found in the Linux kernel, specifically in the adv7533 attach dsi function. The host node pointer was assigned and freed in adv7533 parse dt, and later used in adv753...

7.8CVSS5.5AI score0.00205EPSS
Exploits0
NVD
NVD
added 2024/12/16 3:15 p.m.7 views

CVE-2024-54331

Cross-Site Request Forgery CSRF vulnerability in Micha I Plant A Tree i-plant-a-tree allows Stored XSS.This issue affects I Plant A Tree: from n/a through = 1.7.3...

7.1CVSS0.00202EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/16 2:14 p.m.21 views

CVE-2024-54331 WordPress I Plant A Tree plugin <= 1.7.3 - CSRF to Stored Cross-Site Scripting vulnerability

Cross-Site Request Forgery CSRF vulnerability in Micha I Plant A Tree i-plant-a-tree allows Stored XSS.This issue affects I Plant A Tree: from n/a through = 1.7.3...

7.1CVSS0.00202EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/16 2:14 p.m.11 views

CVE-2024-54331 WordPress I Plant A Tree plugin <= 1.7.3 - CSRF to Stored Cross-Site Scripting vulnerability

Cross-Site Request Forgery CSRF vulnerability in Micha I Plant A Tree allows Stored XSS.This issue affects I Plant A Tree: from n/a through 1.7.3...

7.1CVSS6.8AI score0.00202EPSS
Exploits0References1
CVE
CVE
added 2024/12/16 2:14 p.m.49 views

CVE-2024-54331

CVE-2024-54331 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin “I Plant A Tree” that enables a Stored Cross-Site Scripting (XSS) condition. Affected versions are listed as from n/a through 1.7.3. The connected Red Hat and Wordfence sources confirm this vulnerab...

7.1CVSS7.2AI score0.00202EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/16 12:0 a.m.4 views

WordPress plugin I Plant A Tree 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

7.1CVSS8.4AI score0.00202EPSS
Exploits0References1
OSV
OSV
added 2024/12/12 5:9 p.m.22 views

USN-7154-1 linux, linux-aws, linux-aws-6.8, linux-gcp, linux-gcp-6.8, linux-gke, linux-ibm, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-oem-6.8, linux-oracle, linux-oracle-6.8, linux-raspi vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; -...

8.8CVSS6.7AI score0.00879EPSS
Exploits12References403
Microsoft CVE
Microsoft CVE
added 2024/12/12 8:0 a.m.4 views

jfs: check if leafidx greater than num leaves per dmap tree

...

5.5CVSS6.8AI score0.00277EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.30 views

Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-7154-1)

"The remote Ubuntu 22.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7154-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

8.8CVSS6.8AI score0.00879EPSS
Exploits12References398
Patchstack
Patchstack
added 2024/12/11 8:57 p.m.4 views

WordPress I Plant A Tree plugin <= 1.7.3 - CSRF to Stored Cross-Site Scripting vulnerability

CSRF to Stored Cross-Site Scripting vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin I Plant A Tree versions = 1.7.3...

7.1CVSS5.8AI score0.00202EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/12/09 1:15 p.m.4 views

CVE-2023-29173

Missing Authorization vulnerability in AwesomeTOGI Product Category Tree product-category-tree allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product Category Tree: from n/a through = 2.5...

5.3CVSS5.8AI score0.00361EPSS
Exploits0References3
NVD
NVD
added 2024/12/09 1:15 p.m.11 views

CVE-2023-29173

Missing Authorization vulnerability in AWESOME TOGI Product Category Tree allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product Category Tree: from n/a through 2.5...

5.3CVSS0.00361EPSS
Exploits0References1
CVE
CVE
added 2024/12/09 11:31 a.m.42 views

CVE-2023-29173

CVE-2023-29173: WordPress Product Category Tree plugin

5.3CVSS8.5AI score0.00361EPSS
Exploits0References1
Rows per page
Query Builder