316 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the scheduler calling dlcpubusy with an empty cpusallowed mask, which could lead to a crash...
TencentOS Server 4: youtube-dl (TSSA-2025:0179)
"The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0179 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
CVE-2024-23350
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network...
CVE-2023-33095
Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR...
CVE-2023-33096
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16...
CVE-2023-33101
Transient DOS while processing DL NAS TRANSPORT message with payload length 0...
CVE-2023-33100
Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification...
CVE-2020-11144
Buffer over-read while UE process invalid DL ROHC packet for decompression due to lack of check of size of compresses packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...
CVE-2015-6750
Buffer overflow in Ricoh DL FTP Server 1.1.0.6 and earlier allows remote attackers to execute arbitrary code via a long USER command...
Malicious code in happy-dl (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e929cb53649c6845041c1b252c95bdf817a64cfe203bcd433471ae9c151f8303 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4087 Malicious code in happy-dl (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e929cb53649c6845041c1b252c95bdf817a64cfe203bcd433471ae9c151f8303 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2024-6797
The DL Robots.txt WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-6797
The DL Robots.txt WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-6797
The DL Robots.txt WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-6797
CVE-2024-6797 affects the DL Robots.txt WordPress plugin (versions ≤ 1.2). The vulnerability arises from insufficient sanitisation/escaping of certain settings, enabling Stored Cross-Site Scripting for high-privilege users (e.g., admins) even when unfiltered_html is disallowed (e.g., multisite). ...
CVE-2024-6798
CVE-2024-6798 affects DL Verification WordPress plugin (versions
CVE-2024-6798 DL Verification <= 1.2 - Admin+ Stored XSS
The DL Verification WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-6797 DL Robots.txt <= 1.2 - Admin+ Stored XSS
The DL Robots.txt WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-6797 DL Robots.txt <= 1.2 - Admin+ Stored XSS
The DL Robots.txt WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-6798 DL Verification <= 1.2 - Admin+ Stored XSS
The DL Verification WordPress plugin through 1.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...