Linux Distros Unpatched Vulnerability : CVE-2022-49634

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: sysctl: Fix data-races in procdou8vecminmax. A sysctl variable is accessed concurrently, and...

CVE-2024-10575

CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on the network and potentially impacting connected devices...

CVE-2023-37154

checkbyssh in Nagios nagios-plugins 2.4.5 allows arbitrary command execution via ProxyCommand, LocalCommand, and PermitLocalCommand with $IFS. This has been categorized both as fixed in e8810de, and as intended behavior...

CVE-2023-1576

Rejected reason: This is a duplicate of an earlier CVE, CVE-2022-47069...

Discord Notifies Users of Data Breach Impacting 180 Accounts

By Habiba Rashid Discord acknowledged the data breach in May 2023. This is a post from HackRead.com Read the original post: Discord Notifies Users of Data Breach Impacting 180 Accounts...

GHSA-8WRG-M8VM-5FVJ Authentication Bypass by Primary Weakness in github.com/kongchuanhujiao/server

Impact Authentication Bypass by Primary Weakness CWE-305 Commit: https://github.com/kongchuanhujiao/server/commit/9a125624f219e496bdf4b07b404816d5a309bdc1 ALL Users is impacted. Patches Yes, PLEASE UPGRADE TO v1.3.21-beta.d0ffc0a6...

Cross-site Scripting (XSS) - Stored in pimcore/web2print-tools

Description Stored XSS in the Description of the Favorite Output Channel Configurations. Steps to reproduce 1.Go to https://demo.pimcore.fun/admin/ and login. 2.In the left menu bar, click the Settings icon then choose Favorite Output Channel Configurations, the Favorite Output Channel...

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +95 more potentially affected by CVE-2021-37676 via tensorflow-cpu (>=1.15.0 <=2.3.1)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2021-37676 Source advisory: OSV:GHSA-V768-W7M9-2VMM...

CVE-2021-2046

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Stored Procedure. Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. While t...

Valve: Unauthorized updates to extended_info properties in /store/ajaxpackagesave

Due to incorrectly-implemented access control, partners were able to set the "extendedinfo" value on their own packages. This in turn enabled other security-impacting issues such as the ability to create externally-grantable and other special package types...

CVE-2018-2583

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Stored Procedure. Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MyS...

Kiss Goodbye to Privacy: Microsoft Introduces Cortana for Skype

By Carolina Now you can enjoy the ultimate AI experience since Microsoft This is a post from HackRead.com Read the original post: Kiss Goodbye to Privacy: Microsoft Introduces Cortana for Skype...

tyi.jp XSS vulnerability

Vulnerable URL:...

Oracle Java SE Multiple Vulnerabilities (October 2016 CPU) (Unix)

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is prior to 8 Update 111, 7 Update 121, or 6 Update 131. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the Libraries subcomponent that allows an unauthenticated,...

DDOS attack on LIME's Internet system

DDOS attack on LIME's Internet system LIME says the majority of the customers experiencing degradation in their broadband services over the past few days are now back online and connecting at normal speeds. LIME says the type of attack is known in technology circles as a distributed denial of...

SquirrelMail < 1.4.3 Multiple Vulnerabilities

Binary data 1217.prm...