PT-2024-2080 · Microsoft · Windows Print Spooler +1

Name of the Vulnerable Software and Affected Versions: Windows Print Spooler affected versions not specified Description: The issue is related to synchronization errors in the Windows Print Spooler, specifically a "race condition" that can be exploited to elevate privileges. This could allow an...

CVE-2024-26616

In the Linux kernel, the following vulnerability has been resolved: btrfs: scrub: avoid use-after-free when chunk length is not 64K aligned BUG There is a bug report that, on a ext4-converted btrfs, scrub leads to various problems, including: - "unable to find chunk map" errors BTRFS info device...

UBUNTU-CVE-2024-26616

In the Linux kernel, the following vulnerability has been resolved: btrfs: scrub: avoid use-after-free when chunk length is not 64K aligned BUG There is a bug report that, on a ext4-converted btrfs, scrub leads to various problems, including: - "unable to find chunk map" errors BTRFS info device...

Nomore403 - Tool To Bypass 403/40X Response Codes

nomore403 is an innovative tool designed to help cybersecurity professionals and enthusiasts bypass HTTP 40X errors encountered during web security assessments. Unlike other solutions, nomore403 automates various techniques to seamlessly navigate past these access restrictions, offering a broad...

[SECURITY] Fedora 40 Update: jFormatString-0-0.49.20131227gitf159b88.fc40

This project is derived from Sun's implementation of java.util.Formatter. It is designed to allow compile time checks as to whether or not a use of a format string will be erroneous when executed at runtime...

[SECURITY] Fedora 40 Update: antlrworks-1.5.2-29.fc40

ANTLRWorks is a novel grammar development environment for ANTLR v3 grammars written by Jean Bovet with suggested use cases from Terence Parr. It combin es an excellent grammar-aware editor with an interpreter for rapid prototyping a nd a language-agnostic debugger for isolating grammar errors...

CVE-2024-2267

A vulnerability was found in keerti1924 Online-Book-Store-Website 1.0 and classified as problematic. This issue affects some unknown processing of the file /shop.php. The manipulation of the argument productprice leads to business logic errors. The attack may be initiated remotely. The exploit ha...

CVE-2024-2267 keerti1924 Online-Book-Store-Website shop.php logic error

A vulnerability was found in keerti1924 Online-Book-Store-Website 1.0 and classified as problematic. This issue affects some unknown processing of the file /shop.php. The manipulation of the argument productprice leads to business logic errors. The attack may be initiated remotely. The exploit ha...

CVE-2024-2267 keerti1924 Online-Book-Store-Website shop.php logic error

A vulnerability was found in keerti1924 Online-Book-Store-Website 1.0 and classified as problematic. This issue affects some unknown processing of the file /shop.php. The manipulation of the argument productprice leads to business logic errors. The attack may be initiated remotely. The exploit ha...

CVE-2024-2267

CVE-2024-2267 affects the keerti1924 Online-Book-Store-Website, version 1.0. The issue is a logic error in the processing of the file /shop.php, caused by manipulating the argument product_price which leads to business logic errors. A remote attacker could exploit this, and public disclosures exi...

The vulnerability of the regmapdebugfs_exit() function in Linux operating systems allows a hacker to disclose sensitive information or cause system failures.

The vulnerability of the regmapdebugfsexit function in Linux operating systems is related to memory release errors. Exploiting this vulnerability can allow attackers to disclose sensitive information or cause service failures...

The vulnerability of the Mozilla Firefox browser’s fetch function is related to resource management errors, allowing attackers to compromise the integrity of protected information.

The vulnerability of the Mozilla Firefox browser’s fetch function is related to resource management errors. Exploiting this vulnerability can allow an attacker to compromise the integrity of protected information...

PT-2024-31329

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the Linux kernel, specifically with the drm/amdgpu component. It involves forwarding soft recovery errors to userspace to prevent a bad state where apps keep...

USN-6681-1 linux, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-iot, linux-kvm, linux-raspi vulnerabilities

Wenqing Liu discovered that the f2fs file system implementation in the Linux kernel did not properly validate inode types while performing garbage collection. An attacker could use this to construct a malicious f2fs image that, when mounted and operated on, could cause a denial of service system...

BIT-GITLAB-2021-22256

Improper authorization in GitLab CE/EE affecting all versions since 12.6 allowed guest users to create issues for Sentry errors and track their status...

BIT-GITLAB-2022-1416

Missing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0 before 14.10.1 allows for rendering of attacker controlled HTML tags and CSS styling...

BIT-PUBLIFY-2022-0524

Business Logic Errors in GitHub repository publify/publify prior to 9.2.7...

BIT-JENKINS-2021-21607

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier does not limit sizes provided as query parameters to graph-rendering URLs, allowing attackers to request crafted URLs that use all available memory in Jenkins, potentially leading to out of memory errors...

BIT-NODE-2023-23919

A cryptographic vulnerability exists in Node.js 19.2.0, 18.14.1, 16.19.1, 14.21.3 that in some cases did does not clear the OpenSSL error stack after operations that may set it. This may lead to false positive errors during subsequent cryptographic operations that happen to be on the same thread...

BIT-GITLAB-2023-4522 Improper Validation of Specified Type of Input in GitLab

An issue has been discovered in GitLab affecting all versions before 16.2.0. Committing directories containing LF character results in 500 errors when viewing the commit...