CVE-2023-22653

An OS command injection vulnerability exists in the vtyshubus tcpdumpstartcb functionality of Milesight UR32L v32.3.0.5. A specially crafted HTTP request can lead to command execution. An authenticated attacker can send an HTTP request to trigger this vulnerability...

SUSE CVE-2024-53146

In the Linux kernel, the following vulnerability has been resolved: NFSD: Prevent a potential integer overflow If the tag length is = U32MAX - 3 then the "length + 4" addition can result in an integer overflow. Address this by splitting the decoding into several steps so that decodecbcompound4res...

UBUNTU-CVE-2024-56546

In the Linux kernel, the following vulnerability has been resolved: drivers: soc: xilinx: add the missing kfree in xlnxaddcbforsuspend If we fail to allocate memory for cbdata by kmalloc, the memory allocation for evedata is never freed, add the missing kfree in the error handling path...

MAL-2024-10711 Malicious code in cb-cookie-manager (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9e21db163fcf5bd372c2a214576f2018fdca3221ae4ca1a4ed936a02d013c782 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Google Pixel 安全漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from a buffer overflow vulnerability that stems from a lack of bounds checking in smsExtractCbLanguage in smsCellBroadcast.c, which can be exploited by an attacker to cause an out-of-bounds read...

CVE-2022-49017

CVE-2022-49017 (Linux kernel) : A use-after-free in Tipc processing was mitigated by re-fetching the skb control block from the newly allocated skb after tipc_msg_validate(), preventing dereferencing a freed skb. The issue manifested as a KASAN use-after-free in tipc_crypto_rcv_complete and relat...

CVE-2022-49017 tipc: re-fetch skb cb after tipc_msg_validate

In the Linux kernel, the following vulnerability has been resolved: tipc: re-fetch skb cb after tipcmsgvalidate As the call trace shows, the original skb was freed in tipcmsgvalidate, and dereferencing the old skb cb would cause an use-after-free crash. BUG: KASAN: use-after-free in...

UBUNTU-CVE-2024-49938

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9khtc: Use skbsetlength for resetting urb before resubmit Syzbot points out that skbtrim has a sanity check on the existing length of the skb, which can be uninitialised in some error paths. The intent here is clearly ju...

CVE-2024-49938 wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9khtc: Use skbsetlength for resetting urb before resubmit Syzbot points out that skbtrim has a sanity check on the existing length of the skb, which can be uninitialised in some error paths. The intent here is clearly ju...

PT-2024-6979 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a use-after-free panic in the mtk wed setup tc block cb function. When there are multiple ap interfaces on one band and with WED on, turning the interface down...

Malicious code in sap-cb (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 381eb9774ec795ee1d1d09eea1dfe84d6e8d42293396bcbed791759dcf09a045 The OpenSSF Package Analysis project identified 'sap-cb' @ 0.0.0 npm as malicious. It is considered malicious because: - The package communicate...

MAL-2024-7690 Malicious code in sap-cb (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 381eb9774ec795ee1d1d09eea1dfe84d6e8d42293396bcbed791759dcf09a045 The OpenSSF Package Analysis project identified 'sap-cb' @ 0.0.0 npm as malicious. It is considered malicious because: - The package communicate...

WordPress CB (legacy) plugin <= 0.9.4.18 - Code/Timeframe/Booking Deletion via CSRF vulnerability

Code/Timeframe/Booking Deletion via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin CB legacy versions = 0.9.4.18...

CVE-2024-4382

The CB legacy WordPress plugin through 0.9.4.18 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting codes, timeframes, and bookings via CSRF attacks...

CVE-2024-4382 CB (legacy) <= 0.9.4.18 - Code/Timeframe/Booking Deletion via CSRF

The CB legacy WordPress plugin through 0.9.4.18 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting codes, timeframes, and bookings via CSRF attacks...

CVE-2024-4381

CVE-2024-4381 affects the CB (legacy) WordPress plugin, versions up to 0.9.4.18, due to incomplete sanitisation/escaping of some settings. This can let high-privilege users (e.g., administrators) perform Stored XSS, even when unfiltered_html is disallowed (e.g., multisite). Public details confirm...

CVE-2024-4381 CB (legacy) <= 0.9.4.18 - Admin+ Stored XSS

The CB legacy WordPress plugin through 0.9.4.18 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-4381 CB (legacy) <= 0.9.4.18 - Admin+ Stored XSS

The CB legacy WordPress plugin through 0.9.4.18 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

WordPress plugin CB security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress CB (legacy) Plugin <= 0.9.4.18 is vulnerable to Cross Site Scripting (XSS)

Software CB legacy Type Plugin Vulnerable versions = 0.9.4.18 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4381 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 4e6302b904fc Credits Bob Matyas Required privilege...