Lucene search
+L

15 matches found

OSV
OSV
added 2026/06/29 4:53 p.m.6 views

MAL-2026-6609 Malicious code in @contentprod-authoring/block-manager (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fa028931eef026447363bc2ef44ace207f4f3226de4289e354d26d730fa28186 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.8AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/06/26 2:12 a.m.6 views

SUSE CVE-2026-53060

In the Linux kernel, the following vulnerability has been resolved: dm cache metadata: fix memory leak on metadata abort retry When failing to acquire the rootlock in dmcachemetadataabort because the blockmanager is read-only, the temporary blockmanager created outside the rootlock is not properl...

5.8AI score0.00184EPSS
Exploits0References3
NVD
NVD
added 2026/06/24 5:17 p.m.6 views

CVE-2026-53060

In the Linux kernel, the following vulnerability has been resolved: dm cache metadata: fix memory leak on metadata abort retry When failing to acquire the rootlock in dmcachemetadataabort because the blockmanager is read-only, the temporary blockmanager created outside the rootlock is not properl...

0.00184EPSS
Exploits0References8
CVE
CVE
added 2026/06/24 4:30 p.m.13 views

CVE-2026-53060

Summary: CVE-2026-53060 affects Linux kernel dm-cache metadata handling, where a memory leak occurs in dm_cache_metadata_abort when the root_lock cannot be acquired due to a read-only block_manager. The temporary block_manager created outside the root_lock may not be released, leading to leaked m...

5.7AI score0.00184EPSS
Exploits0References8
OSV
OSV
added 2026/06/24 4:30 p.m.2 views

CVE-2026-53060 dm cache metadata: fix memory leak on metadata abort retry

In the Linux kernel, the following vulnerability has been resolved: dm cache metadata: fix memory leak on metadata abort retry When failing to acquire the rootlock in dmcachemetadataabort because the blockmanager is read-only, the temporary blockmanager created outside the rootlock is not properl...

5.8AI score0.00184EPSS
Exploits0References11
EUVD
EUVD
added 2026/06/24 4:30 p.m.7 views

EUVD-2026-38928

In the Linux kernel, the following vulnerability has been resolved: dm cache metadata: fix memory leak on metadata abort retry When failing to acquire the rootlock in dmcachemetadataabort because the blockmanager is read-only, the temporary blockmanager created outside the rootlock is not properl...

5.7AI score0.00184EPSS
Exploits0References8
NVD
NVD
added 2026/05/15 7:16 p.m.13 views

CVE-2021-47964

Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious extension packages through the block manager. Attackers can upload a crafted ZIP file containing PHP code in the packageinfo.inc file and...

8.8CVSS0.0071EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/15 6:36 p.m.39 views

CVE-2021-47964 Schlix CMS 2.2.6-6 Remote Code Execution via core.blockmanager

Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious extension packages through the block manager. Attackers can upload a crafted ZIP file containing PHP code in the packageinfo.inc file and...

8.8CVSS0.0071EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/15 6:36 p.m.6 views

CVE-2021-47964

Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious extension packages through the block manager. Attackers can upload a crafted ZIP file containing PHP code in the packageinfo.inc file and...

8.8CVSS6.6AI score0.0071EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/15 6:36 p.m.11 views

CVE-2021-47964 Schlix CMS 2.2.6-6 Remote Code Execution via core.blockmanager

Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious extension packages through the block manager. Attackers can upload a crafted ZIP file containing PHP code in the packageinfo.inc file and...

8.8CVSS6.6AI score0.0071EPSS
Exploits0References4
CVE
CVE
added 2026/05/15 6:36 p.m.23 views

CVE-2021-47964

Schlix CMS 2.2.6-6 is affected by a remote code execution flaw in core.blockmanager. An authenticated attacker can upload a crafted ZIP containing PHP in packageinfo.inc and trigger execution by accessing the About tab of the installed extension, enabling arbitrary PHP execution with high impact ...

8.8CVSS6.6AI score0.0071EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/15 6:36 p.m.13 views

EUVD-2021-34817

Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious extension packages through the block manager. Attackers can upload a crafted ZIP file containing PHP code in the packageinfo.inc file and...

8.8CVSS6.6AI score0.0071EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.10 views

Schlix CMS 代码注入漏洞

Schlix CMS is a set of open-source content management systems developed by Schlix company, based on PHP and MySQL. Version 2.2.6-6 of Schlix CMS has a code injection vulnerability. This vulnerability stems from a remote code execution issue, allowing authenticated attackers to execute arbitrary P...

8.8CVSS6.7AI score0.0071EPSS
Exploits0References1
OSV
OSV
added 2025/01/19 12:15 p.m.7 views

UBUNTU-CVE-2024-57929

In the Linux kernel, the following vulnerability has been resolved: dm array: fix releasing a faulty array block twice in dmarraycursorend When dmbmreadlock fails due to locking or checksum errors, it releases the faulty block implicitly while leaving an invalid output pointer behind. The caller ...

7.1CVSS6.2AI score0.00246EPSS
Exploits0References45
Exploit DB
Exploit DB
added 2021/05/06 12:0 a.m.415 views

Schlix CMS 2.2.6-6 - Remote Code Execution (Authenticated)

Exploit Title: Schlix CMS 2.2.6-6 - Remote Code Execution Authenticated Date: 2021-05-06 Exploit Author: Eren Saraç Vendor Homepage: https://www.schlix.com/ Software Link: https://www.schlix.com/downloads/schlix-cms/schlix-cms-v2.2.6-6.zip Version: 2.2.6-6 Tested on: Windows & WampServer ==...

7.4AI score
Exploits0
Rows per page
Query Builder