CVE-2025-71102 scs: fix a wrong parameter in __scs_magic

In the Linux kernel, the following vulnerability has been resolved: scs: fix a wrong parameter in scsmagic scsmagic needs a 'void ' variable, but a 'struct taskstruct ' is given. 'taskscstsk' is the starting address of the task's shadow call stack, and 'scsmagictaskscstsk' is the end address of t...

CVE-2025-71102

In the Linux kernel, the following vulnerability has been resolved: scs: fix a wrong parameter in scsmagic scsmagic needs a 'void ' variable, but a 'struct taskstruct ' is given. 'taskscstsk' is the starting address of the task's shadow call stack, and 'scsmagictaskscstsk' is the end address of t...

CVE-2021-33591

An exposed remote debugging port in Naver Comic Viewer prior to 1.0.15.0 allowed a remote attacker to execute arbitrary code via a crafted HTML page...

CVE-2017-18860

Certain NETGEAR devices are affected by debugging command execution. This affects FS752TP 5.4.2.19 and earlier, GS108Tv2 5.4.2.29 and earlier, GS110TP 5.4.2.29 and earlier, GS418TPP 6.6.2.6 and earlier, GS510TLP 6.6.2.6 and earlier, GS510TP 5.04.2.27 and earlier, GS510TPP 6.6.2.6 and earlier,...

CVE-2019-11642

A log poisoning vulnerability has been discovered in the OneShield Policy Dragon Core framework before 5.1.10. Authenticated remote adversaries can poison log files by entering malicious payloads in either headers or form elements. These payloads are then executed via a client side debugging...

CVE-2023-49194

Insertion of Sensitive Information Into Debugging Code vulnerability in importify Importify Dropshipping WooCommerce importify allows Retrieve Embedded Sensitive Data.This issue affects Importify Dropshipping WooCommerce: from n/a through = 1.0.4...

CVE-2023-4645

The Ad Inserter for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.7.30 via the aiajax function. This can allow unauthenticated attackers to extract sensitive data such as post titles and slugs including those of protected posts along with their...

CVE-2025-23302

NVIDIA HGX and DGX contain a vulnerability where a misconfiguration of the LS10 could enable an attacker to set an unsafe debug access level. A successful exploit of this vulnerability might lead to denial of service...

WordPress plugin Amelia 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

[SECURITY] Fedora 43 Update: libpcap-1.10.6-1.fc43

Libpcap provides a portable framework for low-level network monitoring. Libpcap can provide network statistics collection, security monitoring and network debugging. Since almost every system vendor provides a different interface for packet capture, the libpcap authors created this...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000275)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000275 advisory. In parsehidreportdescriptor in drivers/input/tablet/gtco.c in the Linux kernel through 5.2.1, a malicious USB device can send an HID report that triggers an...

Malware-Analysis-Project-SLMAIL-5.5-BOF-

Malware Analysis Project Introduction to exploit development w...

UBUNTU-CVE-2025-65110

Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. Prior to versions 6.1.2 and 5.6.3, applications meeting two conditions are at risk of arbitrary JavaScript code execution, even if "safe mode" expressionInterpreter is used...

PT-2026-5528

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.18.0-rc5-00127-ga06157804399 Description The Linux kernel contains a flaw in the mm/page alloc subsystem that can lead to corruption of the per-cpu pages pcp structure when SMP Symmetric Multi-Processing is...

PT-2026-26102

Name of the Vulnerable Software and Affected Versions Linux kernel versions 6.6 through 6.14 Description The Linux kernel contains an issue where the xchk xfile descr macros utilize kasprintf, which may fail to allocate memory if the resulting formatted string exceeds a certain length. This can...

Moxa NPort 5000 Series 安全漏洞

The Moxa NPort 5000 Series is a series of industrial-grade serial networking servers from Moxa Corporation of Taiwan, China. A security vulnerability exists in the Moxa NPort 5000 Series that stems from debugging code not being disabled in the UART interface, which could lead to unauthorized acce...

EUVD-2023-60484

In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: pmc: Fix memory leak in amdpmcstbdebugfsopenv2 Function amdpmcstbdebugfsopenv2 may be called when the STB debug mechanism enabled. When amdpmcsendcmd fails, the 'buf' needs to be released...

CVE-2023-54257

CVE-2023-54257 affects the Linux kernel net/macb driver. The issue is a memory corruption in extended buffer descriptor mode caused by the DMA subsystem: the driver attempted to free DMA memory it had not allocated, as observed when enabling CONFIG_DMA_API_DEBUG. The problem was reproduced via a ...

UBUNTU-CVE-2022-50774

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix DMA transfer direction When CONFIGDMAAPIDEBUG is selected, while running the crypto self test on the QAT crypto algorithms, the function adddmaentry reports a warning similar to the one below, saying that...

Explainable AI Agents: Capture LLM Tool Call Reasoning with Spring AI

When building AI agents with tool calling capabilities, developers often need insights into why an LLM chose a particular tool—not just which tool it selected. Understanding the model's reasoning process is important for debugging, observability, and building trustworthy AI systems. Spring AI now...