583 matches found
CVE-2023-2352
The CHP Ads Block Detector plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.9.4. This is due to missing or incorrect nonce validation on the chpabdaction function. This makes it possible for unauthenticated attackers to update or reset plugin...
CVE-2023-36509
Missing Authorization vulnerability in Suresh Chand CHP Ads Block Detector allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CHP Ads Block Detector: from n/a through 3.9.5...
Privacy-Preserving Bathroom Monitoring for Elderly Emergencies Using PIR and LiDAR Sensors
In-home elderly monitoring requires systems that can detect emergency events - such as falls or prolonged inactivity - while preserving privacy and requiring no user input. These systems must be embedded into the surrounding environment, capable of capturing activity, and responding promptly. Thi...
CVE-2022-30960
Jenkins Application Detector Plugin 1.0.8 and earlier does not escape the name of Chois Application Version parameters on views displaying parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...
CVE-2021-30124
The unofficial vscode-phpmd aka PHP Mess Detector extension before 1.3.0 for Visual Studio Code allows remote attackers to execute arbitrary code via a crafted phpmd.command value in a workspace folder...
CVE-2014-125093
A vulnerability has been found in Ad Blocking Detector Plugin up to 1.2.1 on WordPress and classified as problematic. This vulnerability affects unknown code of the file ad-blocking-detector.php. The manipulation leads to information disclosure. The attack can be initiated remotely. Upgrading to...
Understanding and Characterizing Obfuscated Funds Transfers in Ethereum Smart Contracts
Scam contracts on Ethereum have rapidly evolved alongside the rise of DeFi and NFT ecosystems, utilizing increasingly complex code obfuscation techniques to avoid early detection. This paper systematically investigates how obfuscation amplifies the financial risks of fraudulent contracts and...
Malicious code in rei-breakpoint-detector (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a9b6c8b1fd7f1cb2eaa06f06fcd8784424770048731e2333ffad8ced1ca3376 Any computer that has this package installed or running should be considered...
A Rusty Link in the AI Supply Chain: Detecting Evil Configurations in Model Repositories
Recent advancements in large language models LLMs have spurred the development of diverse AI applications from code generation and video editing to text generation; however, AI supply chains such as Hugging Face, which host pretrained models and their associated configuration files contributed by...
CVE-2022-49784
In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd/uncore: Fix memory leak for events array When a CPU comes online, the per-CPU NB and LLC uncore contexts are freed but not the events array within the context structure. This causes a memory leak as identified by the...
CVE-2022-49784 perf/x86/amd/uncore: Fix memory leak for events array
In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd/uncore: Fix memory leak for events array When a CPU comes online, the per-CPU NB and LLC uncore contexts are freed but not the events array within the context structure. This causes a memory leak as identified by the...
CVE-2022-49784 perf/x86/amd/uncore: Fix memory leak for events array
In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd/uncore: Fix memory leak for events array When a CPU comes online, the per-CPU NB and LLC uncore contexts are freed but not the events array within the context structure. This causes a memory leak as identified by the...
PT-2025-18501 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak has been identified in the Linux kernel, specifically in the perf/x86/amd/uncore module. The issue occurs when a CPU comes online, and the per-CPU NB and LLC uncore...
BurpAPIFinder 安全漏洞
BurpAPIFinder is an asset detection plugin by Shaun Personal Developer. A security vulnerability exists in BurpAPIFinder 2.0.2 and earlier versions that stems from vulnerability to denial of service attacks...
CVE-2023-48795 affecting package node-problem-detector for versions less than 0.8.20-2
CVE-2023-48795 affecting package node-problem-detector for versions less than 0.8.20-2. An upgraded version of the package is available that resolves this issue...
CVE-2025-22869 affecting package node-problem-detector for versions less than 0.8.20-2
CVE-2025-22869 affecting package node-problem-detector for versions less than 0.8.20-2. A patched version of the package is available...
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.20-2
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.20-2. A patched version of the package is available...
CVE-2023-44487 affecting package node-problem-detector for versions less than 0.8.10-16
CVE-2023-44487 affecting package node-problem-detector for versions less than 0.8.10-16. A patched version of the package is available...
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.17-6
CVE-2025-22868 affecting package node-problem-detector for versions less than 0.8.17-6. A patched version of the package is available...
AZL-57323 CVE-2025-22869 affecting package node-problem-detector for versions less than 0.8.20-2
SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...