9 matches found
Astra Linux - уязвимость в linux-6.12
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: increase max link count and fix link-enc NULL pointer access why 1. dc-linksMAXLINKS array size smaller than actual requested. maxconnector + maxdpia + 4 virtual = 14. increase from 12 to 14. 2. hwinit access nul...
CVE-2025-61549
Cross-Site Scripting XSS is present on the LoginID parameter on the /PSP/app/web/reg/regdisplay.asp endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 fixed in 19.76. Unsanitized user input is reflected in HTTP responses without proper HTML encoding or escaping. This allows...
CVE-2025-61549
Cross-Site Scripting XSS is present on the LoginID parameter on the /PSP/app/web/reg/regdisplay.asp endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 fixed in 19.76. Unsanitized user input is reflected in HTTP responses without proper HTML encoding or escaping. This allows...
CVE-2025-61549
CVE-2025-61549 affects edu Business Solutions Print Shop Pro WebDesk 18.34. The LoginID parameter on /PSP/app/web/reg/reg_display.asp is vulnerable to reflected XSS due to unsanitized input reflected in HTTP responses without proper HTML encoding. Impact: arbitrary JavaScript execution in a victi...
EUVD-2025-203633
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: increase max link count and fix link-enc NULL pointer access why 1. dc-linksMAXLINKS array size smaller than actual requested. maxconnector + maxdpia + 4 virtual = 14. increase from 12 to 14. 2. hwinit access nul...
CVE-2025-40354 drm/amd/display: increase max link count and fix link->enc NULL pointer access
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: increase max link count and fix link-enc NULL pointer access why 1. dc-linksMAXLINKS array size smaller than actual requested. maxconnector + maxdpia + 4 virtual = 14. increase from 12 to 14. 2. hwinit access nul...
CVE-2025-40354
CVE-2025-40354 affects the Linux kernel DRM/AMD display path. The fix increases the max link count (dc->links) from 12 to 14 to prevent an access overrun, and prevents a NULL pointer dereference to enc in link->enc for dpia non display_endpoint during hw_init. The vulnerability stemmed from...
PT-2024-21957 · Inotec Sicherheitstechnik · Inotec Sicherheitstechnik Webserver Cps220/64
Name of the Vulnerable Software and Affected Versions: INOTEC Sicherheitstechnik WebServer CPS220/64 version 3.3.19 Description: The issue allows a remote attacker to read arbitrary files via absolute path traversal. For example, using the "/cgi-bin/display?file=/etc/passwd" URI, an attacker can...
CVE-2022-30404
College Management System v1.0 is vulnerable to SQL Injection via /CollegeManagementSystem/admin/display-teacher.php?teacherid=...