477 matches found
CVE-2026-1599 Bdtask Bhojon All-In-One Restaurant Management System Checkout placeorder logic error
A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/servicecharge/grandtotal can lea...
CVE-2026-1599 Bdtask Bhojon All-In-One Restaurant Management System Checkout placeorder logic error
A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/servicecharge/grandtotal can lea...
Bdtask Bhojon All-In-One Restaurant Management System has security vulnerabilities.
Bdtask Bhojon All-In-One Restaurant Management System is a restaurant management system developed by the Bangladeshi company Bdtask. Versions of the Bdtask Bhojon All-In-One Restaurant Management System prior to version 20260116 contained security vulnerabilities. These vulnerabilities were cause...
SUSE-SU-2026:0292-1 Security update for govulncheck-vulndb
This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20260123T022811 2026-01-23T02:28:11Z jscPED-11136. Go CVE Numbering Authority IDs added or updated with aliases: GO-2025-3764 CVE-2024-44905 GHSA-6xp3-p59p-q4fj GO-2025-4188 CVE-2025-65637 GHSA-4f99-4q7p-p3gh...
SUSE-SU-2026:0142-1 Security update for govulncheck-vulndb
This update for govulncheck-vulndb fixes the following issues: - Update to version 0.0.20260114T191543 2026-01-14T19:15:43Z jscPED-11136. Go CVE Numbering Authority IDs added or updated with aliases: GO-2025-4248 CVE-2025-62690 GHSA-q66g-q98c-q454 GO-2025-4251 CVE-2025-63389 GHSA-f6mr-38g8-39rg...
CVE-2025-31186
A permissions issue was addressed with additional restrictions. This issue is fixed in Xcode 16.3. An app may be able to bypass Privacy preferences...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002251)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002251 advisory. The onlinepages function in mm/memoryhotplug.c in the Linux kernel before 3.6 allows local users to cause a denial of service NULL pointer dereference and system cra...
GHSA-562R-8445-54R2 ComfyUI-Manager is Vulnerable to CRLF Injection in Configuration Handler
Impact Vulnerability Type: CRLF Injection via ConfigParser An attacker can inject special characters into HTTP query parameters to add arbitrary configuration values to the config.ini file. This can lead to security setting tampering or modification of application behavior. Affected Users: Users...
PT-2026-2611
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel’s Network File System daemon nfsd contains a flaw in the nfsd4 add rdaccess to wrdeleg function. This function improperly manages references to nfsd file objects, leadin...
CVE-2021-0597
In notifyProfileAdded and notifyProfileRemoved of SipService.java, there is a possible way to retrieve SIP account names due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2023-43797
BigBlueButton is an open-source virtual classroom. Prior to versions 2.6.11 and 2.7.0-beta.3, Guest Lobby was vulnerable to cross-site scripting when users wait to enter the meeting due to inserting unsanitized messages to the element using unsafe innerHTML. Text sanitizing was added for lobby...
Security update for govulncheck-vulndb
This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20251230T014957 2025-12-30T01:49:57Z jscPED-11136. Go CVE Numbering Authority IDs added or updated with aliases: GO-2025-4249 CVE-2025-68120 CVE-2025-68120 GO-2025-4254 CVE-2025-62190 GHSA-gmx5-frv9-9m9f...
PT-2026-6119
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the drm/panel-simple subsystem related to the connector type for the DataImage SCF0700C48GGU18 panel. The connector type is missing, causing dev...
SUSE CVE-2022-50867
In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Fix kvzalloc vs statekcalloc usage adrenoshowobject is a trap! It will re-allocate the pointer it is passed on first call, when the data is ascii85 encoded, using kvmalloc/ kvfree. Which means the data passed to it...
UBUNTU-CVE-2023-54185
In the Linux kernel, the following vulnerability has been resolved: btrfs: remove BUGON's in addnewfreespace At addnewfreespace we have these BUGON's that are there to deal with any failure to add free space to the in memory free space cache. Such failures are mostly -ENOMEM that should be very...
CVE-2023-54185 btrfs: remove BUG_ON()'s in add_new_free_space()
In the Linux kernel, the following vulnerability has been resolved: btrfs: remove BUGON's in addnewfreespace At addnewfreespace we have these BUGON's that are there to deal with any failure to add free space to the in memory free space cache. Such failures are mostly -ENOMEM that should be very...
CVE-2023-54185
CVE-2023-54185: Linux kernel btrfs fix fixes a bug in add_new_free_space() by removing BUG_ON() checks and returning errors instead, while optionally reporting the total newly added free space. This change ensures callers already handle errors without kernel panics or brittle aborts when in-memor...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992489)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992489 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: slab-out-of-bounds read in brcmfgetassocies Fix a slab-out-of-bounds read that...
CVE-2023-54129
Summary (CVE-2023-54129) : In the Linux kernel, the octeontx2-af driver fixes a vulnerability by validating the lmac_type_id received from firmware during physical link changes. A faulty lmac_type_id could trigger a kernel panic, as shown by the internal error “Oops: 96000005” in affected builds....
CVE-2023-54129 octeontx2-af: Add validation for lmac type
In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Add validation for lmac type Upon physical link change, firmware reports to the kernel about the change along with the details like speed, lmactypeid, etc. Kernel derives lmactype based on lmactypeid received from...