294 matches found
CVE-2025-68186
The CVE covers a Linux kernel issue in the ring-buffer code. The vulnerability stems from ring_buffer_map_get_reader() being too strict: when the reader catches up to the writer and there is still data on the reader page, rb_get_reader_page() can return NULL and trigger a warning. The fix ensures...
CVE-2025-68186 ring-buffer: Do not warn in ring_buffer_map_get_reader() when reader catches up
In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not warn in ringbuffermapgetreader when reader catches up The function ringbuffermapgetreader is a bit more strict than the other get reader functions, and except for certain situations the rbgetreaderpage should...
Friday Squid Blogging: Giant Squid Eating a Diamondback Squid
I have no context for this video--it's from Reddit--but one of the commenters adds some context: Hey everyone, squid biologist here! Wanted to add some stuff you might find interesting. With so many people carrying around cameras, we're getting more videos of giant squid at the surface than in...
CVE-2025-67543
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Catch Themes Essential Widgets essential-widgets allows Stored XSS.This issue affects Essential Widgets: from n/a through = 2.2.2...
EUVD-2025-202101
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Catch Themes Essential Widgets essential-widgets allows Stored XSS.This issue affects Essential Widgets: from n/a through = 2.2.2...
CVE-2025-67543
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Catch Themes Essential Widgets essential-widgets allows Stored XSS.This issue affects Essential Widgets: from n/a through = 2.2.2...
CVE-2025-67543
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Catch Themes Essential Widgets essential-widgets allows Stored XSS.This issue affects Essential Widgets: from n/a through = 2.2.2...
CVE-2025-67543 WordPress Essential Widgets plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Catch Themes Essential Widgets essential-widgets allows Stored XSS.This issue affects Essential Widgets: from n/a through = 2.2.2...
PT-2025-49919
Name of the Vulnerable Software and Affected Versions Catch Themes Essential Widgets versions through 2.2.2 Description A flaw exists in Catch Themes Essential Widgets that allows for Stored Cross-site Scripting XSS. This issue occurs due to improper neutralization of input during web page...
EUVD-2025-175785
Malicious code in upsilon-decode-catch-log-function npm...
EUVD-2025-177829
Malicious code in minify-mu-catch-authenticate-user npm...
EUVD-2025-179093
Malicious code in epsilon-catch-cold-beta-new npm...
EUVD-2025-176595
Malicious code in root-rain-catch-sigma-float npm...
EUVD-2025-179162
Malicious code in emulate-catch-file-mu-parse npm...
EUVD-2025-179845
Malicious code in catch-byte-decompress-cluster-assert npm...
EUVD-2025-179843
Malicious code in catch-float-cluster-assert-load npm...
EUVD-2025-176728
Malicious code in reject-book-catch-module-short npm...
EUVD-2025-176643
Malicious code in rho-mu-catch-double-cloud npm...
EUVD-2025-178026
Malicious code in long-class-report-grep-catch npm...
EUVD-2025-179846
Malicious code in catch-bash-string-long-catch npm...