CVE-2025-68263

In the Linux kernel, the following vulnerability has been resolved: ksmbd: ipc: fix use-after-free in ipcmsgsendrequest ipcmsgsendrequest waits for a generic netlink reply using an ipcmsgtableentry on the stack. The generic netlink handler handlegenericevent/handleresponse fills entry-response...

UBUNTU-CVE-2025-68263

In the Linux kernel, the following vulnerability has been resolved: ksmbd: ipc: fix use-after-free in ipcmsgsendrequest ipcmsgsendrequest waits for a generic netlink reply using an ipcmsgtableentry on the stack. The generic netlink handler handlegenericevent/handleresponse fills entry-response...

PT-2025-51676

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel’s ksmbd module contains a use-after-free issue within the ipc msg send request function. Specifically, the function waits for a generic netlink reply using an ipc msg...

CVE-2024-1601 SQL Injection in parisneo/lollms-webui

An SQL injection vulnerability exists in the deletediscussion function of the parisneo/lollms-webui application, allowing an attacker to delete all discussions and message data. The vulnerability is exploitable via a crafted HTTP POST request to the /deletediscussion endpoint, which internally...

LoLLMs SQL注入漏洞

LoLLMs is a Web UI for a large language multimodal system by the individual developer Saifeddine ALOUI. LoLLMs suffers from a SQL injection vulnerability that stems from improper neutralization of special elements used in SQL commands, which allows an attacker to send a carefully crafted HTTP POS...

ECSHOP website program can bypass the permission to upload the word Trojan horse-vulnerability warning-the black bar safety net

Brief description: You can bypass the permissions to upload the word Trojan Detailed description: ! The front Desk left a note, content is our word on Trojans:? php eval$POSTcmd;?& gt; ! Then in the background the system==Database Management== Data Backup==select custom backup, selecting...