CVE-2025-11730

A post‑authentication command injection vulnerability in the Dynamic DNS DDNS configuration CLI command in Zyxel ATP series firmware versions from V5.35 through V5.41, USG FLEX series firmware versions from V5.35 through V5.41, USG FLEX 50W series firmware versions from V5.35 through V5.41, and...

CVE-2023-31133

Ghost is an app for new-media creators with tools to build a website, publish content, send newsletters, and offer paid subscriptions to members. Prior to version 5.46.1, due to a lack of validation when filtering on the public API endpoints, it is possible to reveal private fields via a brute...

Ghost CMS 5.42.1 - Path Traversal (CVE-2023-32235)

Binary data ghostcmspathtraversalcve-2023-32235.nbin...

NewStart CGSL MAIN 7.02 : perl Vulnerability (NS-SA-2025-0251)

The remote NewStart CGSL host, running version MAIN 7.02, has perl packages installed that are affected by a vulnerability: - A heap buffer overflow vulnerability was discovered in Perl. Release branches 5.34, 5.36, 5.38 and 5.40 are affected, including development versions from 5.33.1 through...

CVE-2025-9133

A missing authorization vulnerability in Zyxel ATP series firmware versions from V4.32 through V5.40, USG FLEX series firmware versions from V4.50 through V5.40, USG FLEX 50W series firmware versions from V4.16 through V5.40, and USG20W-VPN series firmware versions from V4.16 through V5.40 could...

perl security update

An update is available for perl. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Perl is a high-level programming language that is commonly used for system...

CVE-2022-45873

creationtimestamp| type| source ---|---|--- 2025-04-25 19:07:31+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13506...

Cisco IOS XR Security Vulnerability

Cisco IOS XR is a set of operating systems developed by Cisco for its network devices. A security vulnerability exists in Cisco IOS XR that stems from insufficient validation of parameters contained in SSH client CLI commands, which could allow an authenticated, local attacker to elevate root...

SUSE CVE-2022-48554

File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...

SAMSUNG Mobile devices 输入验证错误漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices Galaxy Store InstantPlay versions prior to 4.5.49.8, which stems from incorrect schema...

SUSE CVE-2015-0432

Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key...

SUSE CVE-2017-1000250

All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to an information disclosure vulnerability which allows remote attackers to obtain sensitive information from the bluetoothd process memory. This vulnerability lies in the processing of SDP search attribute requests...

CVE-2021-34709

Multiple vulnerabilities in image verification checks of Cisco Network Convergence System NCS 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code ...

Compro Camera 安全漏洞

Compro Technology Camera is a video camera from Compro Technology China. A security vulnerability exists in Compro Camera that stems from mjpegStreamer.cgi that allows access to video screenshots. The following products and versions are affected: Compro IP70 2.087130218, IP570 2.087130520, IP60 a...

PT-2019-6134 · Bluez +2 · Bluez +2

Name of the Vulnerable Software and Affected Versions: BlueZ versions through 5.48 Description: A heap-based buffer overflow was discovered in the bluetoothd component of BlueZ. The issue is caused by the lack of size checks when appending data to the output buffer in the service attr req functio...

Linux BlueZ SDP Server Information Disclosure Vulnerability

BlueZ is an official Bluetooth stack for Linux, SDP server is one of the SDP servers. An information disclosure vulnerability exists in the Linux BlueZ SDP server. An information disclosure vulnerability exists in the SDP search attribute request processing of the SDP server in BlueZ 5.46 and...

DEBIAN-CVE-2016-9918

In BlueZ 5.42, an out-of-bounds read was identified in "packethexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash...

BlueZ read-across-the-border vulnerability (CNVD-2016-11953)

BlueZ is an official Bluetooth stack for Linux. A security vulnerability exists in the 'lemetaevdump' function in the tools/parser/hci.c source file of BlueZ version 5.42. An attacker can exploit this vulnerability to read data across boundaries...

BlueZ buffer overflow vulnerability (CNVD-2016-11951)

BlueZ is an official Bluetooth stack for Linux. A buffer overflow vulnerability exists in the 'setextctrl' function in the tools/parser/l2cap.c source file of BlueZ version 5.42. An attacker can exploit this vulnerability by running a compromised dump file to cause a denial of service...

mysql: unspecified vulnerability related to Server:Parser (CPU October 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Parser...