8 matches found
Frappe Learning Management System 安全漏洞
Frappe Learning Management System is an easy-to-use open-source learning management system developed by Frappe. Versions of the Frappe Learning Management System prior to 2.46.0 contained security vulnerabilities. These vulnerabilities stemmed from reliance on client-side calculations for quiz...
GNU Binutils readelf 安全漏洞
GNU Binutils readelf is a command-line tool from the American GNU community. Versions of GNU Binutils readelf 2.46 and earlier contained security vulnerabilities. These vulnerabilities stemmed from errors in relocation or symbol data parsing when processing specially crafted ELF binary files. The...
Amazon Linux 2023 : httpd, httpd-core, httpd-devel (ALAS2023-2025-1318)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1318 advisory. Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exec cmd=... directives. CVE-2025-58098 Improper...
AZL-68412 CVE-2025-11414 affecting package binutils for versions less than 2.41-10
A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function getlinkhashentry of the file bfd/elflink.c of the component Linker. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and...
AZL-68397 CVE-2025-11414 affecting package gdb for versions less than 11.2-10
A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function getlinkhashentry of the file bfd/elflink.c of the component Linker. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and...
AZL-68373 CVE-2025-11414 affecting package binutils for versions less than 2.37-19
A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function getlinkhashentry of the file bfd/elflink.c of the component Linker. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and...
CVE-2023-52059
A cross-site scripting XSS vulnerability in Gestsup v3.2.46 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description text field...
WordPress Seraphinite Bulk Discounts for WooCommerce plugin <= 2.4.6 - Reflected Cross-Site Scripting vulnerability
Reflected Cross-Site Scripting vulnerability discovered by Colin Xu in WordPress Plugin Seraphinite Bulk Discounts for WooCommerce versions = 2.4.6...