Slink 安全漏洞

Slink is a self-hosted image sharing service by the individual developer Andrii Kryvoviaz. A security vulnerability exists in Slink v1.4.9, which stems from the vulnerability of specially crafted SVG uploads to stored cross-site scripting attacks...

CVE-2025-55944

Slink v1.4.9 allows stored cross-site scripting XSS via crafted SVG uploads. When a user views the shared image in a new browser tab, the embedded JavaScript executes. The issue affects both authenticated and unauthenticated users...

CVE-2025-55944

Slink v1.4.9 allows stored cross-site scripting XSS via crafted SVG uploads. When a user views the shared image in a new browser tab, the embedded JavaScript executes. The issue affects both authenticated and unauthenticated users...

Linux Distros Unpatched Vulnerability : CVE-2016-5441

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Replication...

Linux Distros Unpatched Vulnerability : CVE-2016-5437

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log. CVE-2016-54...

PT-2025-35674

Name of the Vulnerable Software and Affected Versions: Camera versions prior to 11.1.02.18 Camera versions prior to 12.1.03.8 Camera versions prior to 13.1.01.4 Description: A missing authorization issue exists in the Camera application. This allows a physical attacker to install a package throug...

Linux Distros Unpatched Vulnerability : CVE-2019-1010091

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tinymce 4.7.11, 4.7.12 is affected by: CWE-79: Improper Neutralization of Input During Web Page Generation. The impact is: JavaScript code execution. The...

CVE-2025-57615

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 An integer overflow vulnerability in the Vector::new constructor function allows an attacker to cause a denial of service via a null pointer dereference. The vulnerability stems from an unchecked cast of a usize parameter to cint,...

CVE-2025-57615

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 An integer overflow vulnerability in the Vector::new constructor function allows an attacker to cause a denial of service via a null pointer dereference. The vulnerability stems from an unchecked cast of a usize parameter to cint,...

CVE-2025-57615

The CVE-2025-57615 entry concerns rust-ffmpeg 0.3.0 (post-commit 5ac0527). The issue is an integer overflow in Vector::new caused by unchecked casting of a usize to c_int, which can pass a negative value to sws_allocVec(), potentially enabling a denial of service via a null pointer dereference. R...

Anritsu ShockLine 代码问题漏洞

Anritsu ShockLine is a series of vector network analyzers from Anritsu Japan. A code issue vulnerability exists in Anritsu ShockLine that stems from insufficient validation of CHX file parsing data, which could lead to remote code execution...

ffmpeg 安全漏洞

ffmpeg is a rust library by meh.individual developer. A security vulnerability exists in ffmpeg version 0.3.0, which stems from an integer overflow in the Vector::new constructor, which could lead to null pointer dereference and denial of service...

PT-2025-35579

Name of the Vulnerable Software and Affected Versions: rust-ffmpeg version 0.3.0 after commit 5ac0527 Description: An integer overflow vulnerability exists in the Vector::new constructor function. This can lead to a denial of service through a null pointer dereference. The issue arises from an...

CVE-2025-57615

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 An integer overflow vulnerability in the Vector::new constructor function allows an attacker to cause a denial of service via a null pointer dereference. The vulnerability stems from an unchecked cast of a usize parameter to cint,...

CVE-2025-57615

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 An integer overflow vulnerability in the Vector::new constructor function allows an attacker to cause a denial of service via a null pointer dereference. The vulnerability stems from an unchecked cast of a usize parameter to cint,...

CVE-2025-9568

CVE-2025-9568 concerns Sunnet’s eHRD CTMS, reported as a Reflected Cross‑Site Scripting vulnerability. The issue enables unauthenticated remote attackers to run arbitrary JavaScript in a user’s browser via phishing, via a reflected XSS vector. The connected documents consistently describe the vul...

AVX-Based Timing Side Channel — ASLR Detection

This work demonstrates a technique for detecting ASLR using AVX memory load instructions combined with RDTSCP timing and SIGSEGV detection. It illustrates how side-channel timing measurements can be applied to analyze memory layout randomization...

An Intrusion Detection System in Internet of Things Using Grasshopper Optimization Algorithm and Machine Learning Algorithms

The Internet of Things IoT has emerged as a foundational paradigm supporting a range of applications, including healthcare, education, agriculture, smart homes, and, more recently, enterprise systems. However, significant advancements in IoT networks have been impeded by security vulnerabilities...

CVE-2025-9472

A vulnerability was found in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /ownerutility/addownerutility.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public...

CVE-2025-54300

A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. The SVG upload feature does not sanitize uploads...