CVE-2024-12919

The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 2.13.7. This is due to the pmspbpaymentredirectlink function using the user-controlled value...

Researchers Detail Kubernetes Vulnerability That Enables Windows Node Takeover

Details have been made public about a now-patched high-severity flaw in Kubernetes that could allow a malicious attacker to achieve remote code execution with elevated privileges under specific circumstances. "The vulnerability allows remote code execution with SYSTEM privileges on all Windows...

Critical RCE Vulnerability Uncovered in Juniper SRX Firewalls and EX Switches

Juniper Networks has released updates to fix a critical remote code execution RCE vulnerability in its SRX Series firewalls and EX Series switches. The issue, tracked as CVE-2024-21591, is rated 9.8 on the CVSS scoring system. "An out-of-bounds write vulnerability in J-Web of Juniper Networks Jun...

Debian: Security Advisory (DLA-366-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Inappropriate Implementation In Navigation

Chrome has inappropriate implementation in navigation. The vulnerability exists due to an insecure function in google chrome allowing an attacker to compromise the system...

Regular Expression Denial Of Service (ReDoS)

parse-link-header is vulnerable to regular expression denial of service. The usage of an insecure 'checkHeader' function allows an attacker to cause a denial of service condition via a malicious URL string...

Design/Logic Flaw

Vulnerability in the generation of session IDs in revive-adserver 5.3.0, based on the cryptographically insecure uniqid PHP function. Under some circumstances, an attacker could theoretically be able to brute force session IDs in order to take over a specific account...

in miodec/monkeytype

✍️ Description Users can bypass leaderboard controls and inject any object they want into the leaderboard by spoofing post requests to /checkLeaderboards. Malicious users can send specially crafted post requests and inject any user they want to the top of the leaderboard with any value words per...

Arbitrary Command Injection

jwutil is vulnerable to arbitrary command injection. The vulnerability exists as it uses the insecure function yaml.load without any validation in FromString and FromStream...

CVE-2007-3732

In Linux 2.6 before 2.6.23, the TRACEIRQSON function in iretexc calls a C function without ensuring that the segments are set properly. The kernel's %fs needs to be restored before the call in TRACEIRQSON and before enabling interrupts, so that "current" references work. Without this, "current"...

Remote Code Execution (RCE)

modulemd is vulnerable to remote code execution RCE. The vulnerability is possible because it is using insecure function yaml.loadall...

Authentication Bypass

libcups.so is vulnerable to authentication bypass. The CUPS web interface uses an insecure function and seed to generate the session cookie, which results in a predictable token that can be guessed easily by a remote attacker to gain access to the application...

CVE-2012-5670

The bdfparseglyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service out-of-bounds write and crash via vectors related to BDF fonts and an ENCODING field with a negative value...

GLSA-200909-12 : HTMLDOC: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200909-12 HTMLDOC: User-assisted execution of arbitrary code ANTHRAX666 reported an insecure call to the sscanf function in the setpagesize function in htmldoc/util.cxx. Nico Golde of the Debian Security Team found two more insecu...

HTMLDOC: User-assisted execution of arbitrary code

Background HTMLDOC is a HTML indexer and HTML to PS and PDF converter. Description ANTHRAX666 reported an insecure call to the sscanf function in the setpagesize function in htmldoc/util.cxx. Nico Golde of the Debian Security Team found two more insecure calls in the writetype1 function in...

SaphpLesson 4.0 SQL Injection

---------------------------------SaphpLesson v4.0 Auth Bypass SQL Injection Vulnerability--------------------------------------- ---------------------------------------------------------------------------------------------------------------- Script : SaphpLesson version : 4.0 Language: PHP Site:...

CA Internet Security Suite UmxEventCli.dll控件不安全函数调用漏洞

CA Internet Security Suite是为家庭用户提供的综合网络安全解决方案。 Internet Security Suite所提供的UmxEventCli.CachedAuditDataList.1 ActiveX控件（UmxEventCli.dll）没有安全地调用SaveToFile函数，如果用户受骗访问了恶意网页的话，就可能以当前登录用户的权限覆盖并破坏系统上的任意文件。 Computer Associates Internet Security Suite 2008 Computer Associates -------------------...

GV 2.x3.x - .PDF.PS File Buffer Overflow (2)

GV 2.x3.x - .PDF.PS File Buffer Overflow 2 // source: https://www.securityfocus.com/bid/5808/info gv is a freely available, open source Portable Document Format PDF and PostScript PS viewing utility. It is available for Unix and Linux operating systems. It has been reported that an insecure sscan...

GV 2.x/3.x - '.PDF'/'.PS' File Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/5808/info gv is a freely available, open source Portable Document Format PDF and PostScript PS viewing utility. It is available for Unix and Linux operating systems. It has been reported that an insecure sscanf function exists in gv. Due to this...