linuxmintusers.de Cross Site Scripting vulnerability OBB-3427279

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

PT-2023-19696 · Linux Mint +2 · Linuxmint +2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue was rejected by upstream. There is no additional information about the nature of the issue or its potential impact. Recommendations: At the...

PT-2023-19963 · Linux Mint +2 · Linuxmint +2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue was rejected by upstream. No further details are provided about the nature of the issue or its potential impact. Recommendations: At the momen...

SUSE CVE-2019-20326

A heap-based buffer overflow in cairoimagesurfacecreatefromjpeg in extensions/cairoio/cairo-image-surface-jpeg.c in GNOME gThumb before 3.8.3 and Linux Mint Pix before 2.4.5 allows attackers to cause a crash and potentially execute arbitrary code via a crafted JPEG file...

linuxmintusers.de Cross Site Scripting vulnerability OBB-3165993

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Warpinator 后置链接漏洞

Warpinator is an open source file sharing library for Linux Mint that shares files across a LAN. Files are sent and received over the local network. A security vulnerability exists in Warpinator that stems from allowing access to directories other than those intended, such as symbolic directory...

NanoCMS v0.4 - Remote Code Execution (Authenticated) Exploit

Exploit Title: NanoCMS v0.4 - Remote Code Execution RCE Authenticated Exploit Auuthor: p1ckzi Vendor Homepage: https://github.com/kalyan02/NanoCMS Version: NanoCMS v0.4 Tested on: Linux Mint 20.3 CVE: N/A Description: this script uploads a php reverse shell to the target. NanoCMS does not sanitis...

NanoCMS 0.4 Remote Code Execution

Exploit Title: NanoCMS v0.4 - Remote Code Execution RCE Authenticated Date: 2022-07-26 Exploit Auuthor: p1ckzi Vendor Homepage: https://github.com/kalyan02/NanoCMS Version: NanoCMS v0.4 Tested on: Linux Mint 20.3 CVE: N/A Description: this script uploads a php reverse shell to the target. NanoCMS...

NanoCMS v0.4 - Remote Code Execution (RCE) (Authenticated)

Exploit Title: NanoCMS v0.4 - Remote Code Execution RCE Authenticated Date: 2022-07-26 Exploit Auuthor: p1ckzi Vendor Homepage: https://github.com/kalyan02/NanoCMS Version: NanoCMS v0.4 Tested on: Linux Mint 20.3 CVE: N/A Description: this script uploads a php reverse shell to the target. NanoCMS...

Citrix Workspace for Linux on Linux Mint : HDX optimization fails for MS Teams published App

MS Teams do not show as HDX Optimized status in MS Teams- About-Version. Microphone and Camera fail to get redirected...

None in vim/vim

Description Hello there! Hope you are having an awesome day! 🤗 After I saw the last Rick de Jager's report, I decided to pick up their PoC as a valid input for fuzzing vim on its patch 8.2.3912, and ended up finding a new case of double-free! For testing, I compiled vim with GCC 9.3.0, and my O.S...

Denial Of Service (DoS)

gthumb:stretch is vulnerable to denial of service. A heap-based buffer overflow in cairoimagesurfacecreatefromjpeg in extensions/cairoio/cairo-image-surface-jpeg.c in GNOME gThumb and Linux Mint Pix allows attackers to cause a crash and potentially execute arbitrary code via a crafted JPEG file...

Debian DLA-2749-1 : gthumb - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-2749 advisory. An issue has been found in gthumb, an image viewer and browser. A heap-based buffer overflow in cairoimagesurfacecreatefromjpeg in...

MGASA-2021-0090 Updated pix packages fix a security vulnerability

A heap-based buffer overflow in cairoimagesurfacecreatefromjpeg in extensions/cairoio/cairo-image-surface-jpeg.c in Linux Mint Pix before 2.4.5 allows attackers to cause a crash and potentially execute arbitrary code via a crafted JPEG file CVE-2019-20326...

Updated pix packages fix a security vulnerability

A heap-based buffer overflow in cairoimagesurfacecreatefromjpeg in extensions/cairoio/cairo-image-surface-jpeg.c in Linux Mint Pix before 2.4.5 allows attackers to cause a crash and potentially execute arbitrary code via a crafted JPEG file CVE-2019-20326...

‘Child’s Play’ – Kids breach and bypass Linux Mint screensaver lock

By Sudais Asif According to their father, the kids were able to bypass the Linux Mint screensaver lock not once but twice. This is a post from HackRead.com Read the original post: Childs Play - Kids breach and bypass Linux Mint screensaver lock...

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2020-2237)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP9 : sudo (EulerOS-SA-2020-2237)

According to the version of the sudo package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process...

Zyxel Armor X1 WAP6806 Directory Traversal

Exploit Title: Zyxel Armor X1 WAP6806 - Directory Traversal Date: 2020-06-19 Exploit Author: Rajivarnan R Vendor Homepage: https://www.zyxel.com/ Software http://www.zyxelguard.com/WAP6806.asp Version: V1.00ABAL.6C0 CVE: 2020-14461 Tested on: Linux Mint / Windows 10 Vulnerabilities Discovered Dat...

Zyxel Armor X1 WAP6806 - Directory Traversal Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Zyxel Armor X1 WAP6806 - Directory Traversal Exploit Author: Rajivarnan R Vendor Homepage: https://www.zyxel.com/ Software http://www.zyxelguard.com/WAP6806.asp Version: V1.00ABAL.6C0 CVE: 2020-14461 Tested on: Linux Mint /...