EUVD-2021-21290

Malware in sbrugna...

CVE-2025-8904

Amazon EMR Secret Agent creates a keytab file containing Kerberos credentials. This file is stored in the /tmp/ directory. A user with access to this directory and another account can potentially decrypt the keys and escalate to higher privileges. Users are advised to upgrade to Amazon EMR versio...

CVE-2023-53089

In the Linux kernel, the following vulnerability has been resolved: ext4: fix task hung in ext4xattrdeleteinode Syzbot reported a hung task problem: ================================================================== INFO: task syz-executor232:5073 blocked for more than 143 seconds. Not tainted...

Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2024-41953 Zitadel improperly sanitizes HTML in emails and Console UI

Zitadel is an open source identity management system. ZITADEL uses HTML for emails and renders certain information such as usernames dynamically. That information can be entered by users or administrators. Due to a missing output sanitization, these emails could include malicious code. This may...

CVE-2020-25173

An attacker with local network access can obtain a fixed cryptography key which may allow for further compromise of Reolink P2P cameras outside of local network access...

Default configuration

Bubblewrap bwrap before version 0.4.1, if installed in setuid mode and the kernel supports unprivileged user namespaces, then the bwrap --userns2 option can be used to make the setuid process keep running as root while being traceable. This can in turn be used to gain root permissions. Note that...

VFront 0.99.5 Reflective Cross Site Scripting

Multiple Reflected Cross-site Scripting Vulnerabilities in VFront 0.99.5 Information -------------------- Advisory by Netsparker Name: Multiple Reflected Cross-site Scripting in VFront 0.99.5 Affected Software: VFront Affected Versions: 0.99.5 Homepage: http://www.vfront.org/ Vulnerability:...

raydar.ca Open Redirect vulnerability

Open Bug Bounty ID: OBB-650919 Description| Value ---|--- Affected Website:| raydar.ca Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...

VideoWhisper Video Conference Integration 4.91.8 - Remote File Upload

Vendor marked as won't fix. See references...

FOCA v2.5.6 - Latest Version download

A newer and improved version of FOCA version 2.5.6 is out for the grabs! "FOCA, which stands for "Fingerprinting Organization with Collected Archives" is an automated tool for downloading documents published in websites, extracting metadata and analyzing data." This is the change log: Log Filter...

Fedora 7 : xpdf-3.02-1.fc7 (2007-1383)

Changes since 3.01: Added anti-aliasing for vector graphics; added the vectorAntialias xpdfrc option; added the '-aaVector' switch to xpdf and pdftoppm. Implemented stroke adjustment always enabled by default, ignoring the SA parameter, to match Adobe's behavior, and added the strokeAdjust xpdfrc...