UBUNTU-CVE-2026-46446

SOGo before 5.12.7, when PostgreSQL or MariaDB is used, and cleartext passwords are stored, allows SQL injection. This is related to cpassword = '%@' in changePasswordForLogin...

Alinto SOGo 安全漏洞

Alinto SOGo is an open-source collaboration office software developed by Alinto. Version 5.12.7 of Alinto SOGo contains a security vulnerability. This vulnerability stems from insufficient SVG content cleaning in the ICS calendar invitation files. It may allow remote attackers to execute JavaScri...

CVE-2025-54793

Astro is a web framework for content-driven websites. In versions 5.2.0 through 5.12.7, there is an Open Redirect vulnerability in the trailing slash redirection logic when handling paths with double slashes. This allows an attacker to redirect users to arbitrary external domains by crafting URLs...

CVE-2024-29125

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage.This issue affects Coupon Affiliates: from n/a through = 5.12.7...

PT-2021-11070 · Qt Company +1 · Qt +1

Name of the Vulnerable Software and Affected Versions: Qt versions 5.12.7 and 5.14.1 Description: An issue has been fixed where QLibrary attempts to load plugins relative to the working directory, allowing attackers to execute arbitrary code via crafted files. Recommendations: For Qt version...

UVI-2021-1000493 uio_hv_generic: Fix another memory leak in error handling paths

uiohvgeneric: Fix another memory leak in error handling paths This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.7 by commit...

GSD-2021-1000491 ipc/mqueue, msg, sem: avoid relying on a stack reference past its expiry

ipc/mqueue, msg, sem: avoid relying on a stack reference past its expiry This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.7 by commit...

PT-2021-4223 · Linux +7 · Linux Kernel +7

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 5.12.7 Description: The issue is related to a buffer overflow in the kernel/bpf/verifier.c component of the Linux kernel, allowing an attacker to perform out-of-bounds reads and writes in kernel memory. This can...

qt: files placed by attacker can influence the working directory and lead to malicious code execution

Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access...