Lucene search
K

150 matches found

OSV
OSV
added 2025/03/27 2:15 p.m.15 views

UBUNTU-CVE-2025-21870

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers Other, non DAI copier widgets could have the same stream name sname as the ALH copier and in that case the copier-data is NULL, no alhdata is attached, which could...

5.5CVSS6.5AI score0.00177EPSS
Exploits0References15
Cvelist
Cvelist
added 2025/03/27 1:38 p.m.15 views

CVE-2025-21870 ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers Other, non DAI copier widgets could have the same stream name sname as the ALH copier and in that case the copier-data is NULL, no alhdata is attached, which could...

0.00177EPSS
Exploits0References3
CVE
CVE
added 2025/03/27 1:38 p.m.114 views

CVE-2025-21870

Technical details for CVE-2025-21870 are not publicly provided in the supplied documents. Monitor for updates.

5.5CVSS6.8AI score0.00177EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2025/03/27 1:38 p.m.6 views

CVE-2025-21870

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers Other, non DAI copier widgets could have the same stream name sname as the ALH copier and in that case the copier-data is NULL, no alhdata is attached, which could...

5.5CVSS5.6AI score0.00177EPSS
Exploits0
OSV
OSV
added 2025/03/27 1:38 p.m.14 views

CVE-2025-21870 ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers Other, non DAI copier widgets could have the same stream name sname as the ALH copier and in that case the copier-data is NULL, no alhdata is attached, which could...

5.5CVSS6.1AI score0.00177EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/03/27 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an uncemented loop when looking for an ALH copier, which could lead to a null pointer dereference...

5.5CVSS6.4AI score0.00177EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/02/05 9:3 a.m.5 views

CVE-2024-38673

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Obtain Infotech Multisite Content Copier/Updater allows Reflected XSS.This issue affects Multisite Content Copier/Updater: from n/a through 1.5.0...

7.1CVSS7AI score0.00354EPSS
Exploits0
NVD
NVD
added 2024/07/20 8:15 a.m.13 views

CVE-2024-38673

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Obtain Infotech Multisite Content Copier/Updater allows Reflected XSS.This issue affects Multisite Content Copier/Updater: from n/a through 1.5.0...

7.1CVSS0.00354EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/20 7:55 a.m.18 views

CVE-2024-38673 WordPress Multisite Content Copier/Updater plugin <= 1.5.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Obtain Infotech Multisite Content Copier/Updater allows Reflected XSS.This issue affects Multisite Content Copier/Updater: from n/a through 1.5.0...

7.1CVSS0.00354EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/20 7:55 a.m.11 views

CVE-2024-38673 WordPress Multisite Content Copier/Updater plugin <= 1.5.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Obtain Infotech Multisite Content Copier/Updater allows Reflected XSS.This issue affects Multisite Content Copier/Updater: from n/a through 1.5.0...

7.1CVSS7AI score0.00354EPSS
Exploits0References1
CVE
CVE
added 2024/07/20 7:55 a.m.39 views

CVE-2024-38673

CVE-2024-38673 concerns the WordPress plugin “Multisite Content Copier/Updater.” The connected records describe an Reflect ed XSS due to Improper Neutralization of Input During Web Page Generation. Affected versions are indicated as “from n/a through 1.5.0.” The CVSS metrics shown (base score 7.1...

7.1CVSS7AI score0.00354EPSS
Exploits0References1
NVD
NVD
added 2024/07/16 6:15 p.m.46 views

CVE-2024-39700

JupyterLab extension template is a copier template for JupyterLab extensions. Repositories created using this template with test option include update-integration-tests.yml workflow which has an RCE vulnerability. Extension authors hosting their code on GitHub are urged to upgrade the template to...

9.9CVSS0.01024EPSS
Exploits3References2
Cvelist
Cvelist
added 2024/07/16 5:37 p.m.49 views

CVE-2024-39700 Remote Code Execution (RCE) vulnerability in jupyterlab extension template `update-integration-tests` GitHub Action

JupyterLab extension template is a copier template for JupyterLab extensions. Repositories created using this template with test option include update-integration-tests.yml workflow which has an RCE vulnerability. Extension authors hosting their code on GitHub are urged to upgrade the template to...

9.9CVSS0.01024EPSS
Exploits3References2
CVE
CVE
added 2024/07/16 5:37 p.m.100 views

CVE-2024-39700

CVE-2024-39700 describes a remote code execution in the JupyterLab extension template copier, specifically in the update-integration-tests.yml workflow of the JupyterLab extension template used to bootstrap projects. The RCE is linked to repositories created with the template’s test option. Affec...

9.9CVSS9.7AI score0.01024EPSS
Exploits3References2Affected Software1
OSV
OSV
added 2024/07/16 5:37 p.m.28 views

CVE-2024-39700 Remote Code Execution (RCE) vulnerability in jupyterlab extension template `update-integration-tests` GitHub Action

JupyterLab extension template is a copier template for JupyterLab extensions. Repositories created using this template with test option include update-integration-tests.yml workflow which has an RCE vulnerability. Extension authors hosting their code on GitHub are urged to upgrade the template to...

9.9CVSS6.8AI score0.01024EPSS
Exploits3References4
Patchstack
Patchstack
added 2024/07/10 9:49 a.m.4 views

WordPress Multisite Content Copier/Updater plugin <= 2.0.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin Multisite Content Copier/Updater versions = 2.0.0...

7.1CVSS6.1AI score0.00354EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/03/16 12:0 a.m.19 views

WordPress Multisite Content Copy/Update plugin跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports the hosting of personal blog sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress Multisite Content Copier/Updater plugin...

6.1CVSS1AI score0.00788EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/03/14 3:15 p.m.7 views

CVE-2022-0503

The WordPress Multisite Content Copier/Updater WordPress plugin before 2.1.2 does not sanitise and escape the s parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in the network dashboard...

6.1CVSS6.3AI score0.00788EPSS
Exploits2References2
OSV
OSV
added 2022/03/14 3:15 p.m.4 views

CVE-2022-0503

The WordPress Multisite Content Copier/Updater WordPress plugin before 2.1.2 does not sanitise and escape the s parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in the network dashboard...

6.1CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2022/03/14 3:15 p.m.19 views

CVE-2022-0503

The WordPress Multisite Content Copier/Updater WordPress plugin before 2.1.2 does not sanitise and escape the s parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in the network dashboard...

6.1CVSS0.00788EPSS
Exploits2References1
Rows per page
Query Builder