436 matches found
CVE-2021-41323
Directory traversal in the Compress feature in Pydio Cells 2.2.9 allows remote authenticated users to overwrite personal files, or Cells files belonging to any user, via the format parameter...
CVE-2020-12848
In Pydio Cells 2.0.4, once an authenticated user shares a file selecting the create a public link option, a hidden shared user account is created in the backend with a random username. An anonymous user that obtains a valid public link can get the associated hidden account username and password a...
CVE-2020-12853
Pydio Cells 2.0.4 allows XSS. A malicious user can either upload or create a new file that contains potentially malicious HTML and JavaScript code to personal folders or accessible cells...
CVE-2017-17949
Cells Blog 3.5 has XSS via the pubreadpost.php fmid parameter...
CVE-2017-17948
Cells Blog 3.5 has XSS via the jfdname parameter in an act=showpic request...
CVE-2017-17950
Cells Blog 3.5 has SQL Injection via the pubreadpost.php ptid parameter...
Malicious code in @sporta-technology/d11-web-components.table-cells.tc-tags-status (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @sporta-technology/d11-web-components.table-cells.tc-icon-button (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @sporta-technology/d11-web-components.table-cells.tc-icon (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @sporta-technology/d11-web-components.table-cells.tc-header (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-3353 Malicious code in @sporta-technology/d11-web-components.table-cells.tc-header (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @sporta-technology/d11-web-components.table-cells.tc-data (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @sporta-technology/d11-web-components.table-cells.tc-cell (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @sporta-technology/d11-web-components.table-cells.tc-avatars (npm)
--- -= Per source details. Do not edit below this line.=-...
Friday Squid Blogging: A New Explanation of Squid Camouflage
New research: An associate professor of chemistry and chemical biology at Northeastern University, Deravi’s recently published paper in the Journal of Materials Chemistry C sheds new light on how squid use organs that essentially function as organic solar cells to help power their camouflage...
Azure Linux 3.0 Security Update: kernel (CVE-2024-56781)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56781 advisory. - In the Linux kernel, the following vulnerability has been resolved: powerpc/prominit: Fixup missing powermac...
powerpc/prom_init: Fixup missing powermac #size-cells
...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: MIPS: Loongson64: DTS: Actually fixed the PCIe port nodes for ls7a. Fixed the dtc warnings: arch/mips/boot/dts/loongson/ls7a-pch.dtsi:68.16-416.5: Warning interruptprovider: /bus@10000000/pci@1a000000: 'interrupt-cells' found,...
CVE-2019-5032
An exploitable out-of-bounds read vulnerability exists in the LabelSst record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the...
CVE-2024-56781
In the Linux kernel, the following vulnerability has been resolved: powerpc/prominit: Fixup missing powermac size-cells On some powermacs escc nodes are missing size-cells properties, which is deprecated and now triggers a warning at boot since commit 045b14ca5c36 "of: WARN on deprecated...