openSUSE 16 Security Update : matio (openSUSE-SU-2026:20022-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20022-1 advisory. - update to version 1.5.29: Fix printing rank-1-variable in MatVarPrint Fix array index out of bounds in MatVarPrint when printing UTF-8 charact...

CVE-2025-23212

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The external storage feature allows any user to enumerate the name and content of files on the server. This vulnerability is fixed in 1.5.28...

CVE-2025-23213

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The file upload feature allows to upload arbitrary files, including html and svg. Both can contain malicious content XSS Payloads. This vulnerability is fixed in 1.5.28...

CVE-2025-50343

An issue was discovered in matio 1.5.28. A heap-based memory corruption can occur in MatVarCreateStruct when the nfields value does not match the actual number of strings in the fields array. This leads to out-of-bounds reads and invalid memory frees during cleanup, potentially causing a...

MATIO 安全漏洞

MATIO is an open source C language library for reading and writing binary MATLAB MAT files by tbeu individual developers. A security vulnerability exists in MATIO version 1.5.28, which stems from a mismatch between the value of nfields in the MatVarCreateStruct function and the actual number of...

Linux Distros Unpatched Vulnerability : CVE-2025-50343

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in matio 1.5.28. A heap-based memory corruption can occur in MatVarCreateStruct when the nfields value does not match the actual number ...

"region PAY" App for Android vulnerable to insertion of sensitive information into log file

Overview "region PAY" App for Android provided by Gift Pad Co.,Ltd. contains the following vulnerability. Insertion of sensitive information into log file CWE-532 - CVE-2025-52580 Kubo Naoki reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

UBUNTU-CVE-2025-2338

A vulnerability, which was classified as critical, was found in tbeu matio 1.5.28. Affected is the function strdupvprintf of the file src/io.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may ...

MATIO 安全漏洞

MATIO is an open source C language library for reading and writing binary MATLAB MAT files by tbeu individual developers. A security vulnerability exists in MATIO version 1.5.28, which stems from a heap buffer overflow and could lead to a remote attack...

PT-2025-11386

Name of the Vulnerable Software and Affected Versions tbeu matio version 1.5.28 Description A critical vulnerability has been found in tbeu matio, affecting the function Mat VarPrint of the file src/mat.c. The manipulation leads to a heap-based buffer overflow. The attack may be initiated remotel...

MATIO 安全漏洞

MATIO is an open source C language library for reading and writing binary MATLAB MAT files by tbeu individual developers. A security vulnerability exists in MATIO version 1.5.28, which stems from a heap buffer overflow and could lead to a remote attack...

CVE-2025-23213

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The file upload feature allows to upload arbitrary files, including html and svg. Both can contain malicious content XSS Payloads. This vulnerability is fixed in 1.5.28...

CVE-2025-23212

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The external storage feature allows any user to enumerate the name and content of files on the server. This vulnerability is fixed in 1.5.28...

CVE-2025-23213

CVE-2025-23213 concerns Tandoor Recipes, where the file-upload feature accepts arbitrary files (including html and svg). The underlying issue is a stored XSS risk introduced by uploading malicious content, enabling XSS payloads. Public sources consistently describe the affected product as Tandoor...

CVE-2025-23213 Tandoor Recipes - Stored XSS through Unrestricted File Upload

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The file upload feature allows to upload arbitrary files, including html and svg. Both can contain malicious content XSS Payloads. This vulnerability is fixed in 1.5.28...

CVE-2025-23213 Tandoor Recipes - Stored XSS through Unrestricted File Upload

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The file upload feature allows to upload arbitrary files, including html and svg. Both can contain malicious content XSS Payloads. This vulnerability is fixed in 1.5.28...

CVE-2025-23213 Tandoor Recipes - Stored XSS through Unrestricted File Upload

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The file upload feature allows to upload arbitrary files, including html and svg. Both can contain malicious content XSS Payloads. This vulnerability is fixed in 1.5.28...

CVE-2025-23212

CVE-2025-23212 affects Tandoor Recipes. The vulnerability stems from the external storage feature, which allows any user to enumerate the names and contents of files on the server, yielding a local file disclosure. The issue is fixed in version 1.5.28 . Multiple connected sources corroborate this...

CVE-2025-23212 Tandoor Recipes - Local file disclosure - Users can read the content of any file on the server

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The external storage feature allows any user to enumerate the name and content of files on the server. This vulnerability is fixed in 1.5.28...

CVE-2025-23212 Tandoor Recipes - Local file disclosure - Users can read the content of any file on the server

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The external storage feature allows any user to enumerate the name and content of files on the server. This vulnerability is fixed in 1.5.28...