53 matches found
CVE-2025-38334
In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Prevent attempts to reclaim poisoned pages TL;DR: SGX page reclaim touches the page to copy its contents to secondary storage. SGX instructions do not gracefully handle machine checks. Despite this, the existing SGX code...
CVE-2025-38096 wifi: iwlwifi: don't warn when if there is a FW error
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: don't warn when if there is a FW error iwltransreclaim is warning if it is called when the FW is not alive. But if it is called when there is a pending restart, i.e. after a FW error, there is no need to warn,...
CVE-2022-49839
CVE-2022-49839 : In the Linux kernel, the scsi_transport_sas path sas_phy_add() could crash if transport_add_device() failed, since error handling did not account for a NULL device during transport_remove_device() invoked from sas_remove_host(). The issue is mitigated by the upstream fix to check...
CVE-2025-22113 ext4: avoid journaling sb update on error if journal is destroying
In the Linux kernel, the following vulnerability has been resolved: ext4: avoid journaling sb update on error if journal is destroying Presently we always BUGON if trying to start a transaction on a journal marked with JBD2UNMOUNT, since this should never happen. However, while ltp running stress...
New catalog creation fails with error, "Invalid configuration for device '0'."
Unable to create new MCS catalogs with the image created via the ELM. The error being seen is. 15:15:38:91700,3852,3228,Citrix.MachineCreation.exe,0,MachineCreationServiceHCL,,0,,1,Error,"Create VM 'test-applay001' Failed with error PluginUtilities.Exceptions.ManagedMachineGeneralException: Inval...
CVE-2024-2151 SourceCodester Online Mobile Management Store Product Price logic error
A vulnerability classified as problematic was found in SourceCodester Online Mobile Management Store 1.0. Affected by this vulnerability is an unknown functionality of the component Product Price Handler. The manipulation of the argument quantity with the input -1 leads to business logic errors...
CVE-2024-26584 net: tls: handle backlogging of crypto requests
In the Linux kernel, the following vulnerability has been resolved: net: tls: handle backlogging of crypto requests Since we're setting the CRYPTOTFMREQMAYBACKLOG flag on our requests to the crypto API, cryptoaeadencrypt,decrypt can return -EBUSY instead of -EINPROGRESS in valid situations. For...
tRPC vs GraphQL
Deciphering the Cloud Conundrum: An Introduction to tRPC & GraphQL The dynamic domain of cloud technology presents a couple of instrumental methodologies in the arena of APIs: tRPC and GraphQL. Each serves as a potent asset for developers in crafting applications that are resilient, scalable, and...
kernel: iavf: Fix NULL pointer dereference in iavf_get_link_ksettings
A flaw was found in the iavf module in the Linux kernel. A NULL pointer dereference can be triggered due to improper error management, resulting in a denial of service...
SUSE-FU-2022:0868-1 Feature update for tcl and tk
This feature update for tcl and tk fixes the following issues: Update tcl and tk to version 8.6.12 jscSLE-21016, jscSLE-23284: - Move tcl.macros to /usr/lib/rpm/macros.d bsc1185662 - Use FAT LTO objects in order to provide proper static library bsc1138797 - Fix a bug in itcl that was affecting...
Joomla HD FLV 2.1.0.1 Arbitrary File Download
!/usr/bin/env python Exploit Title : Joomla HD FLV 2.1.0.1 and below Arbitrary File Download Vulnerability Exploit Author : Claudio Viviani Vendor Homepage : http://www.hdflvplayer.net/ Software Link : http://www.hdflvplayer.net/downloadcount.php?pid=5 Dork google 1: inurl:/component/hdflvplayer/...
Wordpress Slideshow Gallery 1.4.6 - Shell Upload (Python Exploit)
No description provided by source. !/usr/bin/env python WordPress Slideshow Gallery 1.4.6 Shell Upload Exploit WordPress Slideshow Gallery plugin version 1.4.6 suffers from a remote shell upload vulnerability CVE-2014-5460 Vulnerability discovered by: Jesus Ramirez Pichardo -...
IPFire 2.15 Bash Command Injection
!/usr/bin/env python Exploit Title : IPFire = 2.15 core 82 Authenticated cgi Remote Command Injection ShellShock Exploit Author : Claudio Viviani Vendor Homepage : http://www.ipfire.org Software Link: http://downloads.ipfire.org/releases/ipfire-2.x/2.15-core82/ipfire-2.15.i586-full-core82.iso Dat...
Joomla Mac Gallery 1.5 - Arbitrary File Download
No description provided by source. Exploit Title : Joomla Mac Gallery = 1.5 Arbitrary File Download Exploit Author : Claudio Viviani Vendor Homepage : https://www.apptha.com Software Link : https://www.apptha.com/downloadable/download/sample/sampleid/18 Dork Google: inurl:option=commacgallery Dat...
Call of Duty <= 1.4 - Denial of Service Exploit
No description provided by source. / winerr.h / / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h void stderrvoid char error; switchWSAGetLastError case 10004: error = Interrupted system...
Halo <= 1.05 Broadcast Client Crash Exploit
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h...
GO-Global Windows Server <= 3.1.0.3270 Buffer Overflow (PoC)
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h...
Kaillera 0.86 Message Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18871/info Kaillera is prone to a buffer-overflow vulnerability because it fails to properly bounds-check messages before copying them to an insufficiently sized memory buffer. Successful exploits can allow remote attacke...
Novell GroupWise Messenger <= 2.1.0 DoS
Exploit for windows platform in category dos / poc winerr.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error; switchWSAGetLastError case 10004: error = "Interrupted system call"...
Call of Duty <= 1.4 Denial of Service Exploit
No description provided by source. / winerr.h / / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h void stderrvoid char error; switchWSAGetLastError case 10004: error = "Interrupted system...