11 matches found
CVE-2025-55834
A Cross Site Scripting vulnerability in JeeWMS v.3.7 and before allows a remote attacker to obtain sensitive information via the logController.do component...
CVE-2025-5254
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Kron Technologies Kron PAM allows Stored XSS. This issue affects Kron PAM: before 3.7...
SUSE CVE-2013-0217
Memory leak in drivers/net/xen-netback/netback.c in the Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service memory consumption by triggering certain error conditions...
CVE-2022-46258
An incorrect authorization vulnerability was identified in GitHub Enterprise Server that allowed a repository-scoped token with read/write access to modify Action Workflow files without a Workflow scope. The Create or Update file contents API should enforce workflow scope. This vulnerability...
Linaro OP-TEE 加密问题漏洞
Linaro OP-TEE is an open source trusted execution environment from Linaro UK. A security vulnerability exists in Linaro OP-TEE, which originated in Linaro OP-TEE prior to 3.7.0, where it is possible to cause a crash by directly calling the update and final cryptographic functions through the use ...
It-novum OpenITCOCKPIT Encryption Issues Vulnerability
It-novum OpenITCOCKPIT is a set of open source system monitoring tools from Germany's It-novum. An encryption issue vulnerability exists in It-novum openITCOCKPIT versions prior to 3.7.3. The vulnerability stems from a network system or product that does not properly use the relevant cryptographi...
UBUNTU-CVE-2019-14884
A vulnerability was found in Moodle 3.7 before 3.73, 3.6 before 3.6.7 and 3.5 before 3.5.9, where a reflected XSS possible from some fatal error messages...
PT-2022-8587
Name of the Vulnerable Software and Affected Versions Moodle versions prior to 3.8.2 Moodle versions prior to 3.7.5 Moodle versions prior to 3.6.9 Moodle versions prior to 3.5.11 Description The issue allows users to view the grade history report without proper restrictions. Specifically, users...
Linux kernel denial of service vulnerability (CNVD-2015-08552)
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the fs/ext4/namei.c file in Linux kernel versions prior to 3.7. An attacker in close physical proximity could exploit this vulnerability to...
UBUNTU-CVE-2013-0228
The xeniret function in arch/x86/xen/xen-asm32.S in the Linux kernel before 3.7.9 on 32-bit Xen paravirtops platforms does not properly handle an invalid value in the DS segment register, which allows guest OS users to gain guest OS privileges via a crafted application...
UBUNTU-CVE-2013-0311
The translatedesc function in drivers/vhost/vhost.c in the Linux kernel before 3.7 does not properly handle cross-region descriptors, which allows guest OS users to obtain host OS privileges by leveraging KVM guest OS privileges...