OpenPrinting CUPS 授权问题漏洞

OpenPrinting CUPS is a standards-based open source printing system for Linux® and other Unix®-like operating systems from OpenPrinting, Inc. An authorization issue vulnerability exists in OpenPrinting CUPS versions 2.4.12 and earlier, which stems from a failure to check the password in the...

ALSA-2025:15687 Moderate: php:8.2 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: Leak partial content of the heap through heap buffer over-read in mysqlnd CVE-2024-8929 php: Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233 php: Configuring ...

Linux Distros Unpatched Vulnerability : CVE-2011-0160

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle redirects in conjunction with HTTP Basic Authentication, which might...

CVE-2025-42915

Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an attacker with basic user privileges to abuse functionalities that should be restricted to specific user groups.This issue could impact both the confidentiality and integrity of the application without...

CVE-2025-42915 Missing Authorization Check in Fiori app (Manage Payment Blocks)

Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an attacker with basic user privileges to abuse functionalities that should be restricted to specific user groups.This issue could impact both the confidentiality and integrity of the application without...

CVE-2025-42915 Missing Authorization Check in Fiori app (Manage Payment Blocks)

Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an attacker with basic user privileges to abuse functionalities that should be restricted to specific user groups.This issue could impact both the confidentiality and integrity of the application without...

PT-2025-36548

Name of the Vulnerable Software and Affected Versions: Fiori app Manage Payment Blocks affected versions not specified Description: The Fiori app Manage Payment Blocks does not perform the necessary authorization checks. This allows an attacker with basic user privileges to abuse functionalities...

[SECURITY] [DLA 4168-2] openafs regression update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4168-2 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz September 08, 2025 https://wiki.debian.org/LTS -...

[SECURITY] Fedora 42 Update: tcpreplay-4.5.2-1.fc42

Tcpreplay is a tool to replay captured network traffic. Currently, tcpreplay supports pcap tcpdump and snoop capture formats. Also included, is tcpprep a tool to pre-process capture files to allow increased performance under certain conditions as well as capinfo which provides basic information...

Exploit for CVE-2017-0143

💬 README中文 • Compile/Install/Run • Parameter Description • How to use • Scenario • POC List • Custom Scan • Best Practices Features - Free one id Multi-target web netcat for reverse shell - What is scan4all: integrated vscan, nuclei, ksubdomain, subfinder, etc., fully automated and intelligent。re...

Malicious code in kssd-vol1-basic (npm)

The package kssd-vol1-basic was found to contain malicious code...

MAL-2025-44908 Malicious code in kssd-vol1-basic (npm)

The package kssd-vol1-basic was found to contain malicious code...

Tenda AC8 formWifiBasicSet function buffer overflow vulnerability

Tenda AC8 is a dual gigabit wireless router from Tenda designed for fiber optic homes up to 1000 megabytes, supporting IPv6 protocol with intelligent network management. A buffer overflow vulnerability exists in the Tenda AC8, which is caused by the formWifiBasicSet function failing to correctly...

DXPLOIT1_ScannerTools

It is an offensive tool for system scanning and pentesting. The...

RabbitMQ Node can log Basic Auth header from an HTTP request

...

CVE-2025-55852

Tenda AC8 v16.03.34.06 is vulnerable to Buffer Overflow in the formWifiBasicSet function via the parameter security or security5g...

CVE-2025-54857

Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in SkyBridge BASIC MB-A130 Ver.1.5.8 and earlier. If exploited, a remote unauthenticated attacker may execute arbitrary OS commands with root privileges...

PT-2025-35775

Name of the Vulnerable Software and Affected Versions: Tenda AC8 version 16.03.34.06 Description: The Tenda AC8 version 16.03.34.06 is susceptible to a buffer overflow issue in the formWifiBasicSet function. The vulnerability is triggered through the security or security 5g parameter...

Seiko Solutions SkyBridge BASIC MB-A130 vulnerable to OS command injection

Overview SkyBridge BASIC MB-A130 provided by Seiko Solutions Inc. contains the following vulnerability. OS command injection CWE-78 - CVE-2025-54857 Tsutomu Aramaki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...

CVE-2025-54857

Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in SkyBridge BASIC MB-A130 Ver.1.5.8 and earlier. If exploited, a remote unauthenticated attacker may execute arbitrary OS commands with root privileges...