32 matches found
WWBN AVideo 跨站脚本漏洞
WWBN AVideo is a video platform building system developed by the WWBN team using PHP. Versions of WWBN AVideo prior to version 21 contained a cross-site scripting vulnerability. This vulnerability stemmed from insufficient cleanup of Markdown links in video comments, which could lead to...
OPENSUSE-SU-2026:10093-1 java-21-openjdk-21.0.10.0-1.1 on GA media
These are all security issues fixed in the java-21-openjdk-21.0.10.0-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2021-41272
Besu is an Ethereum client written in Java. Starting in version 21.10.0, changes in the implementation of the SHL, SHR, and SAR operations resulted in the introduction of a signed type coercion error in values that represent negative values for 32 bit signed integers. Smart contracts that ask for...
EUVD-2022-5055
Malicious code in bioql PyPI...
EUVD-2023-23946
Malicious code in bioql PyPI...
CVE-2016-3425 vulnerabilities
Vulnerabilities for packages: openjdk-17-openj9, openjdk-21-openj9, openjdk-8-openj9, openjdk-11-openj9...
CVE-2020-14579 vulnerabilities
Vulnerabilities for packages: openjdk-17-openj9, openjdk-21-openj9, openjdk-8-openj9, openjdk-11-openj9...
GHSA-3G8V-2W9J-WWCX vulnerabilities
Vulnerabilities for packages: openjdk-17-openj9, openjdk-21-openj9, openjdk-8-openj9, openjdk-11-openj9...
CVE-2011-3557 vulnerabilities
Vulnerabilities for packages: openjdk-17-openj9, openjdk-21-openj9, openjdk-8-openj9, openjdk-11-openj9...
GHSA-W522-FX29-439V vulnerabilities
Vulnerabilities for packages: openjdk-17-openj9, openjdk-21-openj9, openjdk-8-openj9, openjdk-11-openj9...
Security Bulletin: Multiple vulnerabilities in IBM® SDK, Java™ Technology Edition affect IBM Storage Protect Operations Center (CVE-2025-1470, CVE-2025-1471).
Summary IBM Storage Protect Operations Center is affected by multiple vulnerabilities in the IBM® SDK Java™ Technology Edition, Version 8. These vulnerabilities could potentially affect OpenJ9 internal ASCII to EBCDIC string wrapper on z/OS. Vulnerability Details CVEID:CVE-2025-1470 DESCRIPTION: ...
CVE-2023-3975
OS Command Injection in GitHub repository jgraph/drawio prior to 21.5.0...
GHSA-HJWW-XJQ7-7798 vulnerabilities
Vulnerabilities for packages: openjdk-17-openj9, openjdk-21-openj9, openjdk-8-openj9, openjdk-11-openj9...
BIT-NODE-MIN-2024-22017
setuid does not affect libuv's internal iouring operations if initialized before the call to setuid. This allows the process to perform privileged operations despite presumably having dropped such privileges through a call to setuid. This vulnerability affects all users using version greater or...
PT-2024-25531 · Cosy+ · Cosy+
Name of the Vulnerable Software and Affected Versions: Cosy+ devices versions 21.x below 21.2s10 Cosy+ devices versions 22.x below 22.1s3 Description: The issue is related to insecure permissions, where several processes are executed with elevated privileges. This is an example of Execution with...
CVE-2024-37762
MachForm up to version 21 is affected by an authenticated unrestricted file upload which leads to a remote code execution...
CVE-2024-37762
MachForm up to version 21 is affected by an authenticated unrestricted file upload which leads to a remote code execution...
Node.js Multiple Vulnerabilities (Apr 2024) - Mac OS X
Node.js is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodejs:node.js"; ifdescription...
UBUNTU-CVE-2024-21891
Node.js depends on multiple built-in utility functions to normalize paths provided to node:fs functions, which can be overwitten with user-defined implementations leading to filesystem permission model bypass through path traversal attack. This vulnerability affects all users using the experiment...
Element55 KnowMore Security Breach
Element55 KnowMore is a capture application from Element55, Inc. A security vulnerability exists in Element55 KnowMore 21 and prior versions that stems from storing passwords in plaintext...