Lucene search
K

477 matches found

Cvelist
Cvelist
added 2026/01/29 5:32 p.m.39 views

CVE-2026-1599 Bdtask Bhojon All-In-One Restaurant Management System Checkout placeorder logic error

A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/servicecharge/grandtotal can lea...

5.3CVSS0.00295EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/29 5:32 p.m.5 views

CVE-2026-1599 Bdtask Bhojon All-In-One Restaurant Management System Checkout placeorder logic error

A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/servicecharge/grandtotal can lea...

5.3CVSS5.5AI score0.00295EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.7 views

Bdtask Bhojon All-In-One Restaurant Management System has security vulnerabilities.

Bdtask Bhojon All-In-One Restaurant Management System is a restaurant management system developed by the Bangladeshi company Bdtask. Versions of the Bdtask Bhojon All-In-One Restaurant Management System prior to version 20260116 contained security vulnerabilities. These vulnerabilities were cause...

5.3CVSS5.8AI score0.00295EPSS
Exploits1References6
OSV
OSV
added 2026/01/26 11:11 a.m.6 views

SUSE-SU-2026:0292-1 Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20260123T022811 2026-01-23T02:28:11Z jscPED-11136. Go CVE Numbering Authority IDs added or updated with aliases: GO-2025-3764 CVE-2024-44905 GHSA-6xp3-p59p-q4fj GO-2025-4188 CVE-2025-65637 GHSA-4f99-4q7p-p3gh...

9CVSS5.8AI score0.01643EPSS
Exploits15References17
OSV
OSV
added 2026/01/17 7:33 a.m.7 views

SUSE-SU-2026:0142-1 Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: - Update to version 0.0.20260114T191543 2026-01-14T19:15:43Z jscPED-11136. Go CVE Numbering Authority IDs added or updated with aliases: GO-2025-4248 CVE-2025-62690 GHSA-q66g-q98c-q454 GO-2025-4251 CVE-2025-63389 GHSA-f6mr-38g8-39rg...

9.9CVSS5.8AI score0.01747EPSS
Exploits9References32
NVD
NVD
added 2026/01/16 6:16 p.m.4 views

CVE-2025-31186

A permissions issue was addressed with additional restrictions. This issue is fixed in Xcode 16.3. An app may be able to bypass Privacy preferences...

3.3CVSS0.00141EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002251)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002251 advisory. The onlinepages function in mm/memoryhotplug.c in the Linux kernel before 3.6 allows local users to cause a denial of service NULL pointer dereference and system cra...

4CVSS6.7AI score0.00387EPSS
Exploits1References18
OSV
OSV
added 2026/01/13 7:2 p.m.6 views

GHSA-562R-8445-54R2 ComfyUI-Manager is Vulnerable to CRLF Injection in Configuration Handler

Impact Vulnerability Type: CRLF Injection via ConfigParser An attacker can inject special characters into HTTP query parameters to add arbitrary configuration values to the config.ini file. This can lead to security setting tampering or modification of application behavior. Affected Users: Users...

7.5CVSS7.1AI score0.00311EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.4 views

PT-2026-2611

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel’s Network File System daemon nfsd contains a flaw in the nfsd4 add rdaccess to wrdeleg function. This function improperly manages references to nfsd file objects, leadin...

9.8CVSS5.8AI score0.96267EPSS
Exploits264References130
RedhatCVE
RedhatCVE
added 2026/01/09 11:15 a.m.5 views

CVE-2021-0597

In notifyProfileAdded and notifyProfileRemoved of SipService.java, there is a possible way to retrieve SIP account names due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.3AI score0.00127EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:30 a.m.8 views

CVE-2023-43797

BigBlueButton is an open-source virtual classroom. Prior to versions 2.6.11 and 2.7.0-beta.3, Guest Lobby was vulnerable to cross-site scripting when users wait to enter the meeting due to inserting unsanitized messages to the element using unsafe innerHTML. Text sanitizing was added for lobby...

6.3CVSS6.2AI score0.00418EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2026/01/06 10:24 a.m.3 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20251230T014957 2025-12-30T01:49:57Z jscPED-11136. Go CVE Numbering Authority IDs added or updated with aliases: GO-2025-4249 CVE-2025-68120 CVE-2025-68120 GO-2025-4254 CVE-2025-62190 GHSA-gmx5-frv9-9m9f...

9.9CVSS7AI score0.7654EPSS
Exploits34References2
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.6 views

PT-2026-6119

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the drm/panel-simple subsystem related to the connector type for the DataImage SCF0700C48GGU18 panel. The connector type is missing, causing dev...

6.5AI score0.00173EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/31 12:30 a.m.12 views

SUSE CVE-2022-50867

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Fix kvzalloc vs statekcalloc usage adrenoshowobject is a trap! It will re-allocate the pointer it is passed on first call, when the data is ascii85 encoded, using kvmalloc/ kvfree. Which means the data passed to it...

5.5CVSS6.4AI score0.00156EPSS
Exploits0References5
OSV
OSV
added 2025/12/30 1:16 p.m.2 views

UBUNTU-CVE-2023-54185

In the Linux kernel, the following vulnerability has been resolved: btrfs: remove BUGON's in addnewfreespace At addnewfreespace we have these BUGON's that are there to deal with any failure to add free space to the in memory free space cache. Such failures are mostly -ENOMEM that should be very...

5.7AI score0.00166EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/12/30 12:8 p.m.22 views

CVE-2023-54185 btrfs: remove BUG_ON()'s in add_new_free_space()

In the Linux kernel, the following vulnerability has been resolved: btrfs: remove BUGON's in addnewfreespace At addnewfreespace we have these BUGON's that are there to deal with any failure to add free space to the in memory free space cache. Such failures are mostly -ENOMEM that should be very...

0.00166EPSS
Exploits0References3
CVE
CVE
added 2025/12/30 12:8 p.m.19 views

CVE-2023-54185

CVE-2023-54185: Linux kernel btrfs fix fixes a bug in add_new_free_space() by removing BUG_ON() checks and returning errors instead, while optionally reporting the total newly added free space. This change ensures callers already handle errors without kernel panics or brittle aborts when in-memor...

6.2AI score0.00166EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992489)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992489 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: slab-out-of-bounds read in brcmfgetassocies Fix a slab-out-of-bounds read that...

7.1CVSS6.7AI score0.00152EPSS
Exploits0References4
CVE
CVE
added 2025/12/24 1:6 p.m.9 views

CVE-2023-54129

Summary (CVE-2023-54129) : In the Linux kernel, the octeontx2-af driver fixes a vulnerability by validating the lmac_type_id received from firmware during physical link changes. A faulty lmac_type_id could trigger a kernel panic, as shown by the internal error “Oops: 96000005” in affected builds....

5.8AI score0.00168EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/12/24 1:6 p.m.25 views

CVE-2023-54129 octeontx2-af: Add validation for lmac type

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Add validation for lmac type Upon physical link change, firmware reports to the kernel about the change along with the details like speed, lmactypeid, etc. Kernel derives lmactype based on lmactypeid received from...

0.00168EPSS
Exploits0References5
Rows per page
Query Builder