EUVD-2022-6541

Malicious code in bioql PyPI...

EUVD-2022-6797

Malicious code in bioql PyPI...

WordPress AdForest Theme <= 6.0.9 is vulnerable to Broken Authentication

Software AdForest Type Theme Vulnerable versions = 6.0.9 Fixed in 6.0.10 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2025-8359 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID f086df38edf9 Credits Tonn Required...

Linux Distros Unpatched Vulnerability : CVE-2019-2875

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and...

Linux Distros Unpatched Vulnerability : CVE-2019-2867

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and...

Third-Party Dependency in Crowd Data Center

Note: Aligning with our security bug fix policy|https://www.atlassian.com/trust/security/bug-fix-policy, this vulnerability has been fixed in our latest release only This Critical severity Third-Party Dependency vulnerability was introduced in version 6.1.1 of Crowd Data Center. This Third-Party...

jose 安全漏洞

jose is a JavaScript module for JSON object signing and encryption from the individual developer Filip Skokan. A security vulnerability exists in jose version 6.0.10, which stems from the use of weak cryptography...

CVE-2025-7786

A vulnerability, which was classified as problematic, has been found in Gnuboard g6 up to 6.0.10. This issue affects some unknown processing of the file /bbs/scrappopinupdate/qa/ of the component Post Reply Handler. The manipulation leads to cross site scripting. The attack may be initiated...

CVE-2022-2997

Session Fixation in GitHub repository snipe/snipe-it prior to 6.0.10...

Pix Software Vivaz 安全漏洞

Pix Software Vivaz is an application from Pix Software. A security vulnerability exists in Pix Software Vivaz version 6.0.10 that stems from the inclusion of a cross-site request forgery issue...

PT-2025-6107 · Pix · Pix Software Vivaz

Name of the Vulnerable Software and Affected Versions: Pix Software Vivaz version 6.0.10 Description: A critical issue has been found in the code related to the /servlet?act=login file, where manipulation of the usuario argument can lead to SQL injection. This issue can be exploited remotely. The...

Pix Software Vivaz 安全漏洞

Pix Software Vivaz is an application from Pix Software. A security vulnerability exists in Pix Software Vivaz version 6.0.10, which stems from the usuario parameter in the /servlet?act=login location contains a SQL injection vulnerability...

Fedora 37 : llhttp (2022-9e7f967d20)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-9e7f967d20 advisory. Update to v6.0.10 - Disable chunked on obs https://github.com/nodejs/llhttp/pull/196 https://github.com/nodejs/llhttp/compare/v6.0.9...v6.0.10 Tenable has...

Zoom Workplace Desktop App For Windows < 6.0.10 Privilage Escalation (ZSB-24026)

The version of Zoom Workplace Desktop App for Windows installed on the remote host is prior to 6.0.10. It is, therefore, affected by a privilage escalation vulnerability that may allow a local authenticated attacker to cause a privilege escalation. Note that Nessus has not tested for this issue b...

SUSE CVE-2019-2877

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...

GSD-2022-1007752 drm/drv: Fix potential memory leak in drm_dev_init()

drm/drv: Fix potential memory leak in drmdevinit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007719 tracing: Fix race where eprobes can be called before the event

tracing: Fix race where eprobes can be called before the event This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007687 9p: trans_fd/p9_conn_cancel: drop client lock earlier

9p: transfd/p9conncancel: drop client lock earlier This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

PT-2022-36015 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.10 Description: The issue is related to the calculation of CQEs from the user visible value in io uring. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...

PT-2022-35956 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.10 Description: The issue is related to a race condition between amd pmu enable all, perf NMI, and throttling, which can cause a crash. The actual impact and attack plausibility have not yet been proven...