8 matches found
CVE-2026-41315
mdserver-web is a simple Linux panel. From 0.18.0 to 0.18.4, mdserver-web has a front-end unauthorized remote command execution vulnerability. Due to the lack of authentication on the /modifycrond and /starttask interfaces, it is possible to modify the default built-in scheduled tasks and start...
CLEANSTART-2026-IX47217 Security fixes for CVE-2025-61732, CVE-2025-68121, CVE-2026-26958, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 0.18.0-r0, 0.19.0-r0
Multiple security vulnerabilities affect the prometheus-mysqld-exporter-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-HA09227 Security fixes for CVE-2025-47911, CVE-2025-47913, CVE-2025-47914, CVE-2025-58181, CVE-2025-58190, CVE-2025-61726, CVE-2025-61727, CVE-2025-61728, CVE-2025-61729, CVE-2025-61730, CVE-2025-61732, CVE-2025-68121, CVE-2026-25679, CVE-2026-27137, CVE-2026-27138, CVE-2026-27139, CVE-2026-27141, CVE-2026-27142, CVE-2026-33186, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 0.18.0-r0, 0.18.0-r1
Multiple security vulnerabilities affect the external-dns package. These issues are resolved in later releases. See references for individual vulnerability details...
GHSA-3PWP-2FQJ-6G2P Duplicate Advisory: Qiskit allows arbitrary code execution decoding QPY format versions < 13
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-6m2c-76ff-6vrf. This link is maintained to preserve external references. Original Description A maliciously crafted QPY file can potential execute arbitrary-code embedded in the payload without privilege...
IBM Qiskit SDK 代码问题漏洞
The IBM Qiskit SDK is an open source SDK from International Business Machines IBM for using quantum computers at the extended quantum circuit, operator, and primitive levels. A code issue vulnerability exists in IBM Qiskit SDK versions 0.18.0 through 1.4.1 that stems from the possibility of...
UBUNTU-CVE-2024-23342
The ecdsa PyPI package is a pure Python implementation of ECC Elliptic Curve Cryptography with support for ECDSA Elliptic Curve Digital Signature Algorithm, EdDSA Edwards-curve Digital Signature Algorithm and ECDH Elliptic Curve Diffie-Hellman. Versions 0.18.0 and prior are vulnerable to the...
BookStack Cross-Site Scripting Vulnerability (CNVD-2020-35507)
BookStack is a set of open source using PHP and Laravel to build wiki documentation platform. A cross-site scripting vulnerability exists in BookStack versions 0.18.0 and later fixed in version 0.29.2. The vulnerability stems from a lack of proper validation of client-side data by the WEB...
PT-2019-15736
Name of the Vulnerable Software and Affected Versions Firecracker versions 0.18.0 through 0.19.0 Description The issue is related to a buffer overflow in the vsock implementation, which can result in potentially exploitable crashes. Recommendations For versions 0.18.0 and 0.19.0, at the moment,...