UBUNTU-CVE-2021-47196

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Set send and receive CQ before forwarding to the driver Preset both receive and send CQ pointers prior to call to the drivers and overwrite it later again till the mlx4 is going to be changed do not overwrite ibqp...

CVE-2024-3566

A command inject vulnerability allows an attacker to perform command injection on Windows applications that indirectly depend on the CreateProcess function when the specific conditions are satisfied...

Exploit for Path Traversal in Apache Ofbiz

Apache OfBiz vulns POC for CVE-2024-32113 The USERNAME...

CD: Users with `create` but not `override` privileges can perform local sync

A flaw was found in the Argo CD package. An improper validation bug allows users to sync local manifests on app creation, who have create privileges but not override privileges. All other restrictions, including AppProject restrictions, are still enforced. The only restriction that is not enforce...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse vulnerability in createqp.cold+0x164/0x16emlx5ib...

Integer Overflow in CreateHob

...

UBUNTU-CVE-2024-26743

In the Linux kernel, the following vulnerability has been resolved: RDMA/qedr: Fix qedrcreateuserqp error flow Avoid the following warning by making sure to free the allocated resources in case that qedrinituserqueue fail. ----------- cut here ----------- WARNING: CPU: 0 PID: 143192 at...

UBUNTU-CVE-2024-26669

In the Linux kernel, the following vulnerability has been resolved: net/sched: flower: Fix chain template offload When a qdisc is deleted from a net device the stack instructs the underlying driver to remove its flow offload callback from the associated filter block using the 'FLOWBLOCKUNBIND'...

Daily Habit Tracker 1.0 - Broken Access Control Vulnerability

Exploit Title: Daily Habit Tracker 1.0 - Broken Access Control Exploit Author: Yevhenii Butenko Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17118/daily-habit-tracker-using-php-and-mysql-source-code.html Version: 1.0 Tested on: Debian CVE :...

April 2, 2024, update for PowerPoint 2016 (KB5002568)

April 2, 2024, update for PowerPoint 2016 KB5002568 This article describes update 5002568 for Microsoft PowerPoint 2016 that was released on April 2, 2024.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't app...

Important: kernel

Issue Overview: dmtablecreate in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to in alloctargets allocate more than INTMAX bytes, and crash, because of a missing check for struct dmioctl.targetcount. CVE-2023-52429 In the Linux kernel, the following vulnerability has been...

funboot 跨站脚本漏洞

Funboot is a Yii2 based Saas rapid development platform by individual developer peanut funson86. A cross-site scripting vulnerability exists in funboot v1.1, which stems from an easy cross-site scripting attack via the title field in create a message...

PT-2024-22848 · Funboot · Funboot

Name of the Vulnerable Software and Affected Versions: funboot version 1.1 Description: The issue is related to Cross Site Scripting XSS via the title field in the "create a message" endpoint. This allows for potential malicious script injection. Recommendations: For funboot version 1.1, as a...

CVE-2024-29278

funboot v1.1 is vulnerable to Cross Site Scripting XSS via the title field in "create a message ."...

CVE-2024-29278

funboot v1.1 is vulnerable to Cross Site Scripting XSS via the title field in "create a message ."...

OESA-2024-1350 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: EDK2 is susceptible to a vulnerability in the CreateHob function, allowing a user to trigger a integer overflow to buffer overflow via a local network. Successful...

PT-2024-41426 · Ооо "Ивс" · Videograce

Уязвимость программного обеспечения видеоконференцсвязи VideoGrace связана с недостаточной проверкой входных данных. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, создавать конференции от имени произвольного пользователя...

Insurance Management System PHP and MySQL 1.0 - Multiple Stored XSS Vulnerabilities

Exploit Title:Insurance Management System PHP and MySQL 1.0 - Multiple Stored XSS Exploit Author: Hakkı TOKLU Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/16995/insurance-management-system-php-mysql.html Version: 1.0 Tested on: Windows 11 / PHP...

CVE-2024-26644 btrfs: don't abort filesystem when attempting to snapshot deleted subvolume

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't abort filesystem when attempting to snapshot deleted subvolume If the source file descriptor to the snapshot ioctl refers to a deleted subvolume, we get the following abort: BTRFS: Transaction aborted error -2 WARNIN...

Insurance Management System PHP and MySQL 1.0 - Multiple Stored XSS

Exploit Title:Insurance Management System PHP and MySQL 1.0 - Multiple Stored XSS Date: 2024-02-08 Exploit Author: Hakkı TOKLU Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/16995/insurance-management-system-php-mysql.html Version: 1.0 Tested on:...