4 matches found
MiracleLinux 9 : thunderbird-115.11.0-1.el9_4.ML.1 (AXSA:2024-8308:12)
The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8308:12 advisory. firefox: Arbitrary JavaScript execution in PDF.js CVE-2024-4367 firefox: IndexedDB files retained in private browsing mode CVE-2024-4767 firefox:...
Linux Distros Unpatched Vulnerability : CVE-2025-27406
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Icinga Reporting is the central component for reporting related functionality in the monitoring web frontend and framework Icinga Web 2. A vulnerability present...
The vulnerability of the E-Staff automation system for recruitment processes is related to errors in XML data filtering during document printing, allowing a perpetrator to execute arbitrary commands.
The vulnerability of the E-Staff recruitment process automation system is related to errors in XML data filtering during document printing. Exploiting this vulnerability allows a malicious actor to remotely execute arbitrary commands by sending a specially crafted XML document...
PT-2024-41190 · Ооо 'Датэкс Софтвер' · E-Staff
Уязвимость системы автоматизации рекрутинговых процессов E-Staff связана с ошибками фильтрации данных XML при печати документов. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, выполнять произвольные команды путём отправки специально сформированного XML-документа...