11938 matches found
Exploit for CVE-2025-69993
Leaflet XSS POC Proof of Concept for CVE-2025-69993 — XSS vul...
RHEL 9 : bind (RHSA-2026:8075)
"The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:8075 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named %NASLMINLEVEL...
ALSA-2026:8155 Important: bind9.16 security update
The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. Security Fixes:...
RHEL 8 : bind9.16 (RHSA-2026:8155)
"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:8155 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named %NASLMINLEVEL...
RHEL 9 : bind9.18 (RHSA-2026:7915)
"The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:7915 advisory. BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves ho...
Important: bind security update
The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server is operating correctly. Security Fixes:...
CVE-2025-69993
Leaflet versions up to and including 1.9.4 are vulnerable to Cross-Site Scripting XSS via the bindPopup method. This method renders user-supplied input as raw HTML without sanitization, allowing attackers to inject arbitrary JavaScript code through event handler attributes e.g., . When a victim...
bind9.16 security update
32:9.16.23-0.22.5 - Prevent Denial of Service via maliciously crafted DNSSEC-validated zone CVE-2026-1519...
Important: Red Hat Security Advisory: bind9.18 security update
An update for bind9.18 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
bind: BIND: Denial of Service via maliciously crafted DNSSEC-validated zone
A flaw was found in BIND. A remote attacker could exploit this vulnerability by sending a maliciously crafted DNSSEC-validated zone to a BIND resolver. This could cause the resolver to consume excessive CPU resources, leading to a denial of service DoS for legitimate users...
[SECURITY] [DLA 4529-1] bind9 security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4529-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès April 13, 2026 https://wiki.debian.org/LTS -...
SUSE: Security Advisory (SUSE-SU-2026:1230-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Tenda F451 安全漏洞
Tenda F451 is a wireless router product that provides network connectivity and wireless coverage. The Tenda F451 suffers from a stack buffer overflow vulnerability. The vulnerability stems from the failure of the fromSetIpBind function in /goform/SetIpBind to properly handle the page parameter,...
SUSE: Security Advisory (SUSE-SU-2026:1229-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ALSA-2026:7915 Important: bind9.18 security update
BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...
CVE-2026-6135 Tenda F451 SetIpBind fromSetIpBind stack-based overflow
A weakness has been identified in Tenda F451 1.0.0.7cnsvn7958. This issue affects the function fromSetIpBind of the file /goform/SetIpBind. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been made...
CVE-2026-6135
CVE-2026-6135 affects Tenda F451 firmware 1.0.0.7_cn_svn7958, specifically the fromSetIpBind function in /goform/SetIpBind. The vulnerability arises from manipulating the argument page, leading to a stack-based buffer overflow. Exploitation is described as possible from remote and the exploit is ...
GHSA-5W89-2C2X-6X66 vulnerabilities
Vulnerabilities for packages: longhorn-share-manager-fips, terraform-provider-time-fips, crossplane-provider-aws-servicediscovery-fips, xeol-fips, nri-rabbitmq, mcp-grafana, wave, nri-rabbitmq-fips, dex-k8s-authenticator, virt-api, prometheus-mysqld-exporter, falcoctl, vgpu-util, task-fips,...
GHSA-GJVH-7JH8-7XHM vulnerabilities
Vulnerabilities for packages: k9s-fips, longhorn-share-manager-fips, terraform-provider-time-fips, coredns-fips, helm, infinispan-operator, crossplane-provider-aws-servicediscovery-fips, litmus-chaos-operator, aws-node-termination-handler, xeol-fips, flux-notification-controller, nri-rabbitmq,...
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: k9s-fips, longhorn-share-manager-fips, terraform-provider-time-fips, coredns-fips, helm, infinispan-operator, crossplane-provider-aws-servicediscovery-fips, litmus-chaos-operator, aws-node-termination-handler, xeol-fips, flux-notification-controller, nri-rabbitmq,...