CVE-2024-40646

Vertex is a management tool for PT Private Tracker users to manage streaming and watching videos. Versions prior to commit fbde301b97986d5913fc4bc95f5445750d282e11 are vulnerable to path traversal. Users should upgrade to a version containing commit fbde301b97986d5913fc4bc95f5445750d282e11 to...

CVE-2024-40646

Vertex is a management tool for PT Private Tracker users to manage streaming and watching videos. Versions prior to commit fbde301b97986d5913fc4bc95f5445750d282e11 are vulnerable to path traversal. Users should upgrade to a version containing commit fbde301b97986d5913fc4bc95f5445750d282e11 to...

VERTEX path traversal vulnerability

VERTEX is an integrated management tool developed by the individual developer of lswl.in, designed for binge-watching and stream watching. VERTEX has a path traversal vulnerability; this vulnerability arises from path traversal attacks, which may allow attackers to access unauthorized files...

CVE-2026-46140

The CVE affects Linux kernel Bluetooth btmtk code. btmtk_usb_hci_wmt_sync() casts WMT event response SKB data to btmtk_hci_wmt_evt (7 bytes) and btmtk_hci_wmt_evt_funcc (9 bytes) without verifying that the SKB contains enough data, causing out-of-bounds reads from SKB tailroom when a short firmwa...

Astra Linux - уязвимость в snmptt

Before version 1.4.2 of SNMPTT, attackers could execute shell code through EXEC, PREXEC, or unknowntrapexec...

PT-2026-31642

Plane is an an open-source project management tool. From 0.28.0 to before 1.3.0, the remediation of GHSA-jcc6-f9v6-f7jw is incomplete which could lead to the same full read Server-Side Request Forgery when a normal html page contains a link tag with an href that redirects to a private IP address ...

CI4MS 安全漏洞

CI4MS is an open-source blog page management tool developed by Ci4MS. Versions of CI4MS prior to 0.31.4.0 contained security vulnerabilities. These vulnerabilities stemmed from the improper storage and rendering of blacklist remark parameters into HTML attributes, potentially allowing...

CI4MS 授权问题漏洞

CI4MS is an open-source blog page management tool developed by Ci4MS. Versions of CI4MS prior to 0.31.4.0 contained a vulnerability related to authorization issues, which allowed attackers to access sensitive system information...

OpenClaw 安全漏洞

OpenClaw is a command line tool for rights management. A security vulnerability exists in versions of OpenClaw prior to 2026.3.11 that stems from insufficient authorization checking of subagent control requests, resulting in a leaf child agent being able to access the subagent control plane and...

EUVD-2026-16369

Lychee is a free, open-source photo-management tool. The patch introduced for GHSA-cpgw-wgf3-xc6v SSRF via Photo::fromUrl contains an incomplete IP validation check that fails to block loopback addresses and link-local addresses. Prior to version 7.5.1, an authenticated user can still reach...

JetKVM 安全漏洞

JetKVM is an open-source remote computer management tool developed by JetKVM. Versions of JetKVM prior to 0.5.4 contained security vulnerabilities. These vulnerabilities stemmed from the lack of verification of the authenticity of downloaded firmware files. This could allow intermediate parties o...

[SECURITY] Fedora 44 Update: pcs-0.12.2-1.fc44

pcs is a configuration tool for Corosync and Pacemaker. It permits users to easily view, modify and create high availability clusters based on Pacemaker. This package contains the pcs command-line utility and its server pcsd...

Blue-Smiley-Organizer SQL注入漏洞

Blue-Smiley-Organizer is a calendar management tool personally developed by Oliver Antosch. Version 1.32 of Blue-Smiley-Organizer contains an SQL injection vulnerability. This vulnerability stems from the datetime parameter, which allows for SQL injections, potentially enabling unverified attacke...

Kyocera Command Center RX 路径遍历漏洞

Kyocera Command Center RX is a centralized printer management tool from Kyocera, Japan. The product is primarily used to manage and monitor printers on a local area network LAN. A path traversal vulnerability exists in Kyocera Command Center RX that stems from the presence of directory traversal,...

MSM和Qualcomm platform-kernel 资源管理错误漏洞

MSM is a sample management tool from the individual developer Holger Graef in France. Enables researchers to track their samples from any PC in the lab.Qualcomm platform-kernel is a Linux kernel codebase from Qualcomm, USA. A resource management error vulnerability exists in MSM and Qualcomm...

PHP Filesystem Management Tool 安全漏洞

PHP Filesystem Management Tool is a system management tool by the individual developer Fabrício Seger Kolling. A security vulnerability exists in PHP Filesystem Management Tool version 1.7.9, which stems from a loose type comparison in password hash validation that could lead to an authentication...

CVE-2025-13654

A stack buffer overflow vulnerability exists in the bufferget function of duc, a disk management tool, where a condition can evaluate to true due to underflow, allowing an out-of-bounds read. Mitigation To mitigate this issue, if the duc package is not required, it can be removed from the system...

SUSE CVE-2025-13654

A stack buffer overflow vulnerability exists in the bufferget function of duc, a disk management tool, where a condition can evaluate to true due to underflow, allowing an out-of-bounds read...

Linux Distros Unpatched Vulnerability : CVE-2025-13654

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stack buffer overflow vulnerability exists in the bufferget function of duc, a disk management tool, where a condition can evaluate to true due to underflow,...

EUVD-2025-201406

A stack buffer overflow vulnerability exists in the bufferget function of duc, a disk management tool, where a condition can evaluate to true due to underflow, allowing an out-of-bounds read...