SUSE CVE-2026-43055

In the Linux kernel, the following vulnerability has been resolved: scsi: target: file: Use kzallocflex for aiocmd The targetcorefile doesn't initialize the aiocmd-iocb for the kiwritestream. When a write command fdexecuterwaio is executed, we may get a bogus kiwritestream value, causing unintend...

CVE-2026-43055

The CVE-2026-43055 issue affects the Linux kernel SCSI target: file implementation. The root cause is that target_core_file does not initialize aio_cmd->iocb for ki_write_stream, which can yield a bogus ki_write_stream value during fd_execute_rw_aio() and lead to unintended write failure statu...

CVE-2025-23969

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in whassan KI Live Video Conferences ki-live-video-conferences allows Retrieve Embedded Sensitive Data.This issue affects KI Live Video Conferences: from n/a through = 5.5.15...

PT-2026-20450

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The EROFS filesystem may experience a use-after-free UAF condition when a file-backed mount with the directio option is enabled. This can lead to a system panic. The issue arises from a...

EUVD-2025-17155

Malicious code in bioql PyPI...

EUVD-2025-17154

Malicious code in bioql PyPI...

CPUID CPU-Z 安全漏洞

CPUID CPU-Z is a system hardware information detection tool from CPUID. A security vulnerability exists in CPUID CPU-Z version 1.0.5.4, which stems from unverified parameters allowing modification of MSRLSTAR and hook KiSystemCall64...

CVE-2025-23971

Missing Authorization vulnerability in whassan KI Live Video Conferences ki-live-video-conferences allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects KI Live Video Conferences: from n/a through = 5.5.15...

CVE-2025-23971

Missing Authorization vulnerability in whassan KI Live Video Conferences ki-live-video-conferences allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects KI Live Video Conferences: from n/a through = 5.5.15...

CVE-2025-23969

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in whassan KI Live Video Conferences ki-live-video-conferences allows Retrieve Embedded Sensitive Data.This issue affects KI Live Video Conferences: from n/a through = 5.5.15...

CVE-2025-23969 WordPress KI Live Video Conferences plugin <= 5.5.15 - Sensitive Data Exposure Vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in whassan KI Live Video Conferences ki-live-video-conferences allows Retrieve Embedded Sensitive Data.This issue affects KI Live Video Conferences: from n/a through = 5.5.15...

CVE-2025-23969

CVE-2025-23969 is reported for KI Live Video Conferences (via RH: CVE-2025-23969) and concerns Exposure of Sensitive System Information to an Unauthorized Actor . The Red Hat entry mirrors the description: it affects KI Live Video Conferences (version range: n/a up to 5.5.15) and enables retrieva...

CVE-2025-23971 WordPress KI Live Video Conferences plugin <= 5.5.15 - Broken Access Control Vulnerability

Missing Authorization vulnerability in whassan KI Live Video Conferences ki-live-video-conferences allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects KI Live Video Conferences: from n/a through = 5.5.15...

CVE-2025-23971 WordPress KI Live Video Conferences plugin <= 5.5.15 - Broken Access Control Vulnerability

Missing Authorization vulnerability in whassan KI Live Video Conferences ki-live-video-conferences allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects KI Live Video Conferences: from n/a through = 5.5.15...

CVE-2025-23971

CVE-2025-23971 : Missing Authorization in KI Live Video Conferences enables access-control misconfigurations for versions

WordPress plugin KI Live Video Conferences 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability exis...

PT-2025-24111 · Unknown · Whassan Ki Live Video Conferences

Name of the Vulnerable Software and Affected Versions: whassan KI Live Video Conferences versions 5.5.15 and earlier Description: The issue is related to a Missing Authorization vulnerability that allows exploiting incorrectly configured access control security levels. This can be exploited in...

AZL-53516 CVE-2024-50272 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: filemap: Fix bounds checking in filemapread If the caller supplies an iocb-kipos value that is close to the filesystem upper limit, and an iterator with a count that causes us to overflow that limit, then filemapread enters an...

ki-life.ro Cross Site Scripting vulnerability OBB-3951101

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

ki-do-ri.jp Cross Site Scripting vulnerability OBB-3446494

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...