PT-2026-43776

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: Drop initconst from gates Since commit 8ceff24a754a "clk: mediatek: clk-gate: Refactor mtk clk register gate to use mtk gate struct" the mtk gate structs are no longer just used for initialization/registration, but...

Debian dsa-6295 : ata-modules-6.12.90+deb13-armmp-di - security update

The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6295 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6295-1 [email protected] https://www.debian.org/securit...

EUVD-2021-17025

Malware in sbrugna...

SUSE CVE-2022-3636

A vulnerability, which was classified as critical, was found in Linux Kernel. This affects the function mtkppecheckskb of the file drivers/net/ethernet/mediatek/mtkppe.c of the component Ethernet Handler. The manipulation leads to use after free. It is recommended to apply a patch to fix this...

Vulnerabilities fixed in Google Android

Vulnerabilities have been fixed in Google Android. The vulnerabilities allow a malicious person to carry out attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS Access to sensitive data Increased user privileges The vulnerability with attribute...

NETGEAR 缓冲区错误漏洞

Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. A security vulnerability exists in NETGEAR that stems from the mishandling of the WPS Wi-Fi Protected Setup protocol by MediaTek microchips...

Mediat Cross-Site Scripting Vulnerability

Mediat is a responsive media CMS. A cross-site scripting vulnerability exists in Mediat version 1.4.1, which stems from a lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerability to inject malicious JavaScript code to steal user credentials...

CVE-2021-30083

An issue was discovered in Mediat 1.4.1. There is a Reflected XSS vulnerability which allows remote attackers to inject arbitrary web script or HTML without authentication via the 'return' parameter in login.php...

Cross site scripting

An issue was discovered in Mediat 1.4.1. There is a Reflected XSS vulnerability which allows remote attackers to inject arbitrary web script or HTML without authentication via the 'return' parameter in login.php...

CVE-2021-30083

CVE-2021-30083 concerns a reflected XSS in Mediat 1.4.1. The vulnerability occurs in login.php via the unvalidated or improperly sanitized return parameter, allowing remote attackers to inject arbitrary web script/HTML. Impact described across sources includes potential credential theft or sessio...

CVE-2021-30083

An issue was discovered in Mediat 1.4.1. There is a Reflected XSS vulnerability which allows remote attackers to inject arbitrary web script or HTML without authentication via the 'return' parameter in login.php...

Mediat 跨站脚本漏洞

Mediat is a responsive media CMS. A cross-site scripting vulnerability exists in Mediat version 1.4.1, which stems from a lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerability to inject malicious JavaScript code to steal user credentials...

WebFairy Mediat 1.4.1 Cross Site Scripting

Exploit Title: Mediat 1.4.1 - Cross-site Script Google Dork: N/A Date: 1 Jan 2019 Exploit Author: Deyaa Muhammad Author EMail: contact at deyaa.me Author Blog: http://deyaa.me Vendor Homepage: http://webfairy.net/ Software Link: https://github.com/WebFairyNet/Mediat Demo Website:...

Google Android MediaTek Thermal Driver elevation of privilege vulnerability (CNVD-2017-07436)

Google Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA.MediaTek is a MediaTek component used in one of MediaTek's devices. An elevation of privilege vulnerability exists in Google Android. An attacker can exploit this...