Failing Open

Overview Affected versions of this package are vulnerable to Failing Open in plugin installation, when signature verification is required, but the .prov file is missing. An attacker can execute arbitrary code by providing a malicious plugin archive that omits provenance data, thereby bypassing...

Failing Open

Overview Affected versions of this package are vulnerable to Failing Open in plugin installation, when signature verification is required, but the .prov file is missing. An attacker can execute arbitrary code by providing a malicious plugin archive that omits provenance data, thereby bypassing...

EUVD-2025-32438

A security flaw has been discovered in Rebuild up to 4.1.3. Affected by this issue is some unknown functionality of the component Comment/Guestbook. Performing manipulation results in cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 4.1.4 can resolve this...

PT-2025-40785

Name of the Vulnerable Software and Affected Versions Rebuild versions up to 4.1.3 Description A security flaw exists in Rebuild’s Comment/Guestbook component, potentially allowing for cross site scripting. Remote manipulation of an unknown functionality within the component can trigger this issu...

PT-2015-5460 · Red Hat +1 · Freeipa +2

Name of the Vulnerable Software and Affected Versions: FreeIPA versions prior to 4.1.4 Description: The issue is related to the get user grouplist function in the extdom plug-in, which does not properly reallocate memory when processing user accounts. This allows remote attackers to cause a denia...