GNU nano 安全漏洞

GNU nano is a lightweight terminal text editor from the GNU community in the United States. Versions of GNU nano prior to 9.0 contained security vulnerabilities. These vulnerabilities stemmed from overly permissive permissions when creating the user’s /.local directory. This could allow local...

CVE-2026-28777

The SFX2100 Satellite Receiver from IDC is affected by a credential issue: a trivial password for the user (usr) account enables remote unauthenticated SSH access. An attacker can land in a restricted shell and trivially spawn a full pty for an interactive shell, leading to high impact on confide...

EUVD-2018-15540

Malware in sbrugna...

EUVD-2017-14808

Malware in sbrugna...

EUVD-2020-29560

Malware in sbrugna...

EUVD-2024-21093

Malicious code in bioql PyPI...

EUVD-2023-31622

Malicious code in bioql PyPI...

EUVD-2025-24405

Malicious code in bioql PyPI...

EUVD-2025-24419

Malicious code in bioql PyPI...

CVE-2025-24520

Insertion of sensitive information into log file for some IntelR Local Manageability Service software before version 2514.7.16.0 may allow an authenticated user to potentially enable information disclosure via local access...

SUSE-SU-2025:02089-1 Security update for python311

This update for python311 fixes the following issues: Security issues fixed: - CVE-2024-6923: Fixed email header injection due to unquoted newlines bsc1228780 - CVE-2024-0397: Fixed memory race condition in ssl.SSLContext certificate store methods bsc1226447 - CVE-2024-4032: Fixed incorrect IPv4...

CVE-2024-31991

Mealie is a self hosted recipe manager and meal planner. Prior to 1.4.0, the safescrapehtml function utilizes a user-controlled URL to issue a request to a remote server. Based on the content of the response, it will either parse the content or disregard it. This function, nor those that call it,...

CVE-2023-47553

Cross-Site Request Forgery CSRF vulnerability in User Local Inc UserHeat Plugin.This issue affects UserHeat Plugin: from n/a through 1.1.6...

CVE-2025-21099

Uncontrolled search path for some IntelR Graphics software may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-28954

Incorrect default permissions for some IntelR Graphics Driver installers may allow an authenticated user to potentially enable escalation of privilege via local access...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in User Local Inc UserHeat Plugin.This issue affects UserHeat Plugin: from n/a through 1.1.6...

CVE-2023-47553 WordPress UserHeat Plugin Plugin <= 1.1.6 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in User Local Inc UserHeat Plugin.This issue affects UserHeat Plugin: from n/a through 1.1.6...

CVE-2023-47553

CVE-2023-47553 : CSRF in the WordPress UserHeat Plugin (affecting versions up to 1.1.6). The issue allows unauthorized actions via forged requests and has a fixed version of 1.1.11. No exploitation details are provided in the supplied documents; remediation is to upgrade to 1.1.11 or apply the ve...

CVE-2022-21166

Incomplete cleanup in specific special register write operations for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2021-33061

Insufficient control flow management for the IntelR 82599 Ethernet Controllers and Adapters may allow an authenticated user to potentially enable denial of service via local access...