CVE-2025-22744

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Seodev S-DEV SEO s-dev-seo allows Stored XSS.This issue affects S-DEV SEO: from n/a through = 1.88...

CVE-2025-22744 WordPress S-DEV SEO plugin <= 1.88 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rob von Bothmer / SeoDev S-DEV SEO allows Stored XSS.This issue affects S-DEV SEO: from n/a through 1.88...

CVE-2025-22744

CVE-2025-22744 is a stored XSS vulnerability in the S-DEV SEO WordPress plugin by Rob von Bothmer / SeoDev SEO, affecting versions from n/a through 1.88. The Red Hat and Wordfence references confirm the CVE and the vulnerability type; no exploit or remediation details are provided in the document...

CVE-2025-22744 WordPress S-DEV SEO plugin <= 1.88 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Seodev S-DEV SEO s-dev-seo allows Stored XSS.This issue affects S-DEV SEO: from n/a through = 1.88...

AZL-59076 CVE-2024-57795 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Remove the direct link to netdevice The similar patch in siw is in the link: https://git.kernel.org/rdma/rdma/c/16b87037b48889 This problem also occurred in RXE. The following analyze this problem. In the following Call...

WordPress plugin S-DEV SEO 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

GHSA-MQF3-QPC3-G26Q Silverstripe Framework has a Reflected Cross Site Scripting (XSS) in error message

!IMPORTANT This vulnerability only affects sites which are in the "dev" environment mode. If your production website is in "dev" mode, it has been misconfigured, and you should immediately swap it to "live" mode. See https://docs.silverstripe.org/en/developerguides/debugging/environmenttypes/ for...

PT-2025-5641 · Silverstripe · Silverstripe

Name of the Vulnerable Software and Affected Versions: Silverstripe affected versions not specified Description: The issue affects sites in the "dev" environment mode, allowing an XSS payload to be executed in the resulting error message when a specifically crafted URL is provided. This is a...

SUSE CVE-2024-48875

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't take devreplace rwsem on task already holding it Running fstests btrfs/011 with MKFSOPTIONS="-O rst" to force the usage of the RAID stripe-tree, we get the following splat from lockdep: BTRFS info device sdd:...

DEBIAN-CVE-2024-48875

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't take devreplace rwsem on task already holding it Running fstests btrfs/011 with MKFSOPTIONS="-O rst" to force the usage of the RAID stripe-tree, we get the following splat from lockdep: BTRFS info device sdd:...

AZL-56216 CVE-2024-48875 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't take devreplace rwsem on task already holding it Running fstests btrfs/011 with MKFSOPTIONS="-O rst" to force the usage of the RAID stripe-tree, we get the following splat from lockdep: BTRFS info device sdd:...

CVE-2024-48875 btrfs: don't take dev_replace rwsem on task already holding it

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't take devreplace rwsem on task already holding it Running fstests btrfs/011 with MKFSOPTIONS="-O rst" to force the usage of the RAID stripe-tree, we get the following splat from lockdep: BTRFS info device sdd:...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the Btrfs filesystem attempting to fetch the devreplace rwsem again when the task is already in possession o...

CVE-2024-54761

BigAnt Office Messenger 5.6.06 is vulnerable to SQL Injection via the 'devcode' parameter...

SUSE CVE-2024-56782

In the Linux kernel, the following vulnerability has been resolved: ACPI: x86: Add adev NULL check to acpiquirkskipserdevenumeration acpidevhidmatch does not check for adev == NULL, dereferencing it unconditional. Add a check for adev being NULL before calling acpidevhidmatch. At the moment...

BigAntSoft BigAnt office messenger 安全漏洞

BigAntSoft BigAnt office messenger is a server/client instant messaging program for enterprise environments from BigAntSoft Australia. A SQL injection vulnerability exists in BigAntSoft BigAnt office messenger. The vulnerability can be exploited to conduct a SQL injection attack via the "devcode"...

AZL-55376 CVE-2024-56782 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: ACPI: x86: Add adev NULL check to acpiquirkskipserdevenumeration acpidevhidmatch does not check for adev == NULL, dereferencing it unconditional. Add a check for adev being NULL before calling acpidevhidmatch. At the moment...

PT-2025-4360 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the function get canonical dev path in the Linux kernel's btrfs module. It involves a buffer overflow vulnerability that can be triggered when the d path functi...

PT-2025-30769

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the dmaengine subsystem and the idxd driver. When running IDXD workloads within a container with the /dev directory mounted, termination of t...

SUSE CVE-2024-56682

In the Linux kernel, the following vulnerability has been resolved: irqchip/riscv-aplic: Prevent crash when MSI domain is missing If the APLIC driver is probed before the IMSIC driver, the parent MSI domain will be missing, which causes a NULL pointer dereference in msicreatedeviceirqdomain. Avoi...