7427 matches found
CVE-2025-5417 Rhdh: red hat developer hub user permissions
An insufficient access control vulnerability was found in the Red Hat Developer Hub rhdh/rhdh-hub-rhel9 container image. The Red Hat Developer Hub cluster admin/user, who has standard user access to the cluster, and the Red Hat Developer Hub namespace, can access the rhdh/rhdh-hub-rhel9 container...
CVE-2025-5417
An insufficient access control vulnerability was found in the Red Hat Developer Hub rhdh/rhdh-hub-rhel9 container image. The Red Hat Developer Hub cluster admin/user, who has standard user access to the cluster, and the Red Hat Developer Hub namespace, can access the rhdh/rhdh-hub-rhel9 container...
HUSTOJ 安全漏洞
HUSTOJ is a popular OJ system by the individual developer Zhang Haobin zhblue in China. A security vulnerability exists in HUSTOJ version 2025-01-31, which stems from parameter injection and could lead to cross-site scripting attacks...
Red Hat Developer Hub 安全漏洞
Red Hat Developer Hub is an enterprise-grade, internal developer platform from Red Hat USA. A security vulnerability exists in Red Hat Developer Hub that stems from insufficient access control and could lead to a cluster administrator modifying the contents of a mirror...
PT-2025-33706 · Red Hat · Red Hat Developer Hub Rhdh/Rhdh-Hub-Rhel9
Name of the Vulnerable Software and Affected Versions: Red Hat Developer Hub rhdh/rhdh-hub-rhel9 container image affected versions not specified Description: An insufficient access control issue exists in the Red Hat Developer Hub rhdh/rhdh-hub-rhel9 container image. A cluster admin/user with...
CVE-2025-31714
In Developer Tools, there is a possible missing verification incorrect input. This could lead to local escalation of privilege with no additional execution privileges needed...
CVE-2025-31714
CVE-2025-31714 concerns a missing input verification vulnerability in the Developer Tools component of UNISOC chipsets. The flaw enables local privilege escalation without requiring additional execution privileges. Connected sources corroborate the issue's nature (missing input validation) and lo...
CVE-2025-31714
In Developer Tools, there is a possible missing verification incorrect input. This could lead to local escalation of privilege with no additional execution privileges needed...
PT-2025-33625 · Unknown · Developer Tools
Name of the Vulnerable Software and Affected Versions: Developer Tools affected versions not specified Description: A missing input verification flaw exists in Developer Tools. This issue could allow for local escalation of privilege without requiring additional execution privileges...
WordPress School Management Plugin <= 93.2.0 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by Nguyen Kim Sang in WordPress Plugin School Management versions = 93.2.0...
Linux Distros Unpatched Vulnerability : CVE-2025-6557
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in DevTools in Google Chrome on Windows prior to 138.0.7204.49 allowed a remote attacker who convinced a user to engage in specific...
MAL-2025-18352 Malicious code in developer-portal-sample-app (npm)
The package developer-portal-sample-app was found to contain malicious code...
Malicious code in Developer (npm)
The package Developer was found to contain malicious code...
Malicious code in developer-dashboard-common (npm)
The package developer-dashboard-common was found to contain malicious code...
Malicious code in developer-portal-sample-app (npm)
The package developer-portal-sample-app was found to contain malicious code...
Malicious code in react-developer-task (npm)
The package react-developer-task was found to contain malicious code...
Malicious code in risc-zero-developer-website (npm)
The package risc-zero-developer-website was found to contain malicious code...
MAL-2025-32271 Malicious code in risc-zero-developer-website (npm)
The package risc-zero-developer-website was found to contain malicious code...
Malicious code in worldcoin-developer-portal (npm)
The package worldcoin-developer-portal was found to contain malicious code...
Malicious code in news-vj-developer-scaffold (npm)
The package news-vj-developer-scaffold was found to contain malicious code...