Lucene search
+L

160 matches found

AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.3 views

Astra Linux – Vulnerability in gst-plugins-good1.0

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been discovered in the gstmatroskademuxupdatetracks function within matroska-demux.c. The vulnerability occurs when the gstcapsisequal function is called with invalid caps...

7.5CVSS5.9AI score0.00865EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/30 12:0 a.m.3 views

PT-2025-39242

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak within the ath12k service ready ext event function. Specifically, the svc rdy ext.mac phy caps memory is not freed in failure scenarios, leading t...

5.5CVSS6.1AI score0.00137EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/04/26 5:46 p.m.19 views

CVE-2025-46495

Cross-Site Request Forgery CSRF vulnerability in tomontoast Drop Caps drop-caps allows Stored XSS.This issue affects Drop Caps: from n/a through = 2.1...

6.5CVSS7.2AI score0.00131EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/24 5:10 p.m.7 views

WordPress Drop Caps plugin <= 2.1 - CSRF to XSS vulnerability

CSRF to XSS vulnerability discovered by johska in WordPress Plugin Drop Caps versions = 2.1...

6.5CVSS7.9AI score0.00131EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/04/24 4:15 p.m.23 views

CVE-2025-46495

Cross-Site Request Forgery CSRF vulnerability in tomontoast Drop Caps drop-caps allows Stored XSS.This issue affects Drop Caps: from n/a through = 2.1...

6.5CVSS0.00131EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/24 4:8 p.m.20 views

CVE-2025-46495 WordPress Drop Caps plugin <= 2.1 - CSRF to XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in tomontoast Drop Caps drop-caps allows Stored XSS.This issue affects Drop Caps: from n/a through = 2.1...

6.5CVSS0.00131EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/24 4:8 p.m.8 views

CVE-2025-46495 WordPress Drop Caps plugin <= 2.1 - CSRF to XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in tomontoast Drop Caps drop-caps allows Stored XSS.This issue affects Drop Caps: from n/a through = 2.1...

6.5CVSS7.2AI score0.00131EPSS
Exploits0References1
CVE
CVE
added 2025/04/24 4:8 p.m.59 views

CVE-2025-46495

Summary: CVE-2025-46495 describes a Cross-Site Request Forgery (CSRF) that enables Stored XSS in the WordPress Drop Caps plugin (versions n/a through 2.1). Affected product/versions (as provided): Drop Caps plugin for WordPress, affected up to and including version 2.1; version range starting at ...

6.5CVSS7.2AI score0.00131EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/24 12:0 a.m.5 views

PT-2025-17802 · Unknown · Tomontoast Drop Caps

Name of the Vulnerable Software and Affected Versions: tomontoast Drop Caps versions n/a through 2.1 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web application,...

6.5CVSS7.1AI score0.00131EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/24 12:0 a.m.4 views

WordPress plugin Drop Caps 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

6.5CVSS7AI score0.00131EPSS
Exploits0References2
OSV
OSV
added 2025/02/26 7:1 a.m.6 views

AZL-60327 CVE-2022-49296 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: ceph: fix possible deadlock when holding Fwb to get inlinedata 1, mount with wsync. 2, create a file with ORDWR, and the request was sent to mds.0: cephatomicopen-- cephmdscdorequestopenc finishopenfile, dentry, cephopen--...

5.5CVSS5.8AI score0.0016EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.8 views

UBUNTU-CVE-2022-49296

In the Linux kernel, the following vulnerability has been resolved: ceph: fix possible deadlock when holding Fwb to get inlinedata 1, mount with wsync. 2, create a file with ORDWR, and the request was sent to mds.0: cephatomicopen-- cephmdscdorequestopenc finishopenfile, dentry, cephopen--...

5.5CVSS6.6AI score0.0016EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/02/24 12:0 a.m.7 views

PT-2025-25819

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue was related to the video device for the MPEG encoder not setting device caps, which prevented the video device from being...

5.5CVSS6.7AI score0.00176EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/12/13 12:30 a.m.4 views

SUSE CVE-2024-47603

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been discovered in the gstmatroskademuxupdatetracks function within matroska-demux.c. The vulnerability occurs when the gstcapsisequal function is called with invalid caps...

5.5CVSS6.9AI score0.00865EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2024/12/13 12:28 a.m.3 views

SUSE CVE-2024-47834

GStreamer is a library for constructing graphs of media-handling components. An Use-After-Free read vulnerability has been discovered affecting the processing of CodecPrivate elements in Matroska streams. In the GSTMATROSKAIDCODECPRIVATE case within the gstmatroskademuxparsestream function, a dat...

5.5CVSS6.9AI score0.00911EPSS
Exploits0References10
OSV
OSV
added 2024/12/12 2:3 a.m.8 views

AZL-62378 CVE-2024-47603 affecting package gstreamer1 1.20.0-2

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been discovered in the gstmatroskademuxupdatetracks function within matroska-demux.c. The vulnerability occurs when the gstcapsisequal function is called with invalid caps...

7.5CVSS5.6AI score0.00865EPSS
Exploits0References1
OSV
OSV
added 2024/12/12 2:3 a.m.2 views

DEBIAN-CVE-2024-47603

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been discovered in the gstmatroskademuxupdatetracks function within matroska-demux.c. The vulnerability occurs when the gstcapsisequal function is called with invalid caps...

7.5CVSS6AI score0.00865EPSS
Exploits0References1
OSV
OSV
added 2024/12/12 12:0 a.m.1 views

UBUNTU-CVE-2024-47834

GStreamer is a library for constructing graphs of media-handling components. An Use-After-Free read vulnerability has been discovered affecting the processing of CodecPrivate elements in Matroska streams. In the GSTMATROSKAIDCODECPRIVATE case within the gstmatroskademuxparsestream function, a dat...

9.1CVSS5.7AI score0.00911EPSS
Exploits0References5
OSV
OSV
added 2024/12/12 12:0 a.m.6 views

UBUNTU-CVE-2024-47603

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been discovered in the gstmatroskademuxupdatetracks function within matroska-demux.c. The vulnerability occurs when the gstcapsisequal function is called with invalid caps...

7.5CVSS5.8AI score0.00865EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/12/03 12:16 a.m.5 views

SUSE CVE-2024-53108

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adjust VSDB parser for replay feature At some point, the IEEE ID identification for the replay check in the AMD EDID was added. However, this check causes the following out-of-bounds issues when using KASAN:...

5.5CVSS7.9AI score0.00245EPSS
Exploits0References13
Rows per page
Query Builder