PT-2023-15178 · Unknown · Academy Lms

Name of the Vulnerable Software and Affected Versions: Academy LMS versions prior to 5.10 Description: A Cross-Site Request Forgery CSRF issue allows attackers to arbitrarily add Administrator users. Recommendations: For versions prior to 5.10, update to version 5.10 or later to resolve the issue...

AZL-6565 CVE-2021-33909 affecting package kernel for versions less than 5.10.78.1-1

fs/seqfile.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05...

PT-2021-10086 · Wso2 · Wso2 Management Console

Name of the Vulnerable Software and Affected Versions: WSO2 Management Console versions through 5.10 Description: The issue allows for cross-site scripting XSS attacks via the msgId parameter in the carbon/admin/login.jsp page. This can potentially lead to privilege escalation. There have been...