476 matches found
EUVD-2025-204305
An authentication bypass vulnerability exists in AnythingLLM v1.8.5 in via the /api/workspaces endpoint. The endpoint fails to implement proper authentication checks, allowing unauthenticated remote attackers to enumerate and retrieve detailed information about all configured workspaces. Exposed...
CVE-2025-63390
An authentication bypass vulnerability exists in AnythingLLM v1.8.5 in via the /api/workspaces endpoint. The endpoint fails to implement proper authentication checks, allowing unauthenticated remote attackers to enumerate and retrieve detailed information about all configured workspaces. Exposed...
CVE-2025-63390
An authentication bypass vulnerability exists in AnythingLLM v1.8.5 in via the /api/workspaces endpoint. The endpoint fails to implement proper authentication checks, allowing unauthenticated remote attackers to enumerate and retrieve detailed information about all configured workspaces. Exposed...
PT-2025-52256
Name of the Vulnerable Software and Affected Versions AnythingLLM version 1.8.5 Description An authentication bypass allows unauthenticated remote attackers to enumerate and retrieve detailed information about all configured workspaces. The issue is due to missing authentication checks in the...
DEBIAN-CVE-2023-53798
In the Linux kernel, the following vulnerability has been resolved: ethtool: Fix uninitialized number of lanes It is not possible to set the number of lanes when setting link modes using the legacy IOCTL ethtool interface. Since 'struct ethtoollinkksettings' is not initialized in this path, drive...
CVE-2023-53798 ethtool: Fix uninitialized number of lanes
In the Linux kernel, the following vulnerability has been resolved: ethtool: Fix uninitialized number of lanes It is not possible to set the number of lanes when setting link modes using the legacy IOCTL ethtool interface. Since 'struct ethtoollinkksettings' is not initialized in this path, drive...
CVE-2023-53798
CVE-2023-53798 affects the Linux kernel’s ethtool path for setting link modes via the legacy IOCTL interface. The root cause is an uninitialized struct ethtool_link_ksettings in the IOCTL/set_link_ksettings path, causing the lanes field to be read as uninitialized memory, which can influence driv...
CVE-2023-53798
In the Linux kernel, the following vulnerability has been resolved: ethtool: Fix uninitialized number of lanes It is not possible to set the number of lanes when setting link modes using the legacy IOCTL ethtool interface. Since 'struct ethtoollinkksettings' is not initialized in this path, drive...
CVE-2025-40313 ntfs3: pretend $Extend records as regular files
In the Linux kernel, the following vulnerability has been resolved: ntfs3: pretend $Extend records as regular files Since commit af153bb63a33 "vfs: catch invalid modes in mayopen" requires any inode be one of SIFDIR/SIFLNK/SIFREG/SIFCHR/SIFBLK/ SIFIFO/SIFSOCK type, use SIFREG for $Extend records...
Exploit for Deserialization of Untrusted Data in Facebook React
Next.js/React RSC Scanner & Exploit - RCE...
📄 Django 5.1.13 SQL Injection
Django version 5.1.13 suffers from a remote SQL injection vulnerability. Exploit Title: Django 5.1.13 - SQL Injection Google Dork: none Not applicable for this vulnerability Date: 2025-12-03 Exploit Author: Wafcontrol Security Team Vendor Homepage: https://www.djangoproject.com/ Software Link:...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990635)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990635 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/dispnv04: fix null pointer dereference in nv17tvgetldmodes In nv17tvgetldmodes, the...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990571)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990571 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/dispnv04: fix null pointer dereference in nv17tvgethdmodes In nv17tvgethdmodes, the...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990415)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990415 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/exynos/vidi: fix memory leak in .getmodes The duplicated EDID is never freed. Fix it. Tenable...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990139)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990139 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/dispnv04: fix null pointer dereference in nv17tvgetldmodes In nv17tvgetldmodes, the...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990030)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990030 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/exynos/vidi: fix memory leak in .getmodes The duplicated EDID is never freed. Fix it. Tenable...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990314)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990314 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/dispnv04: fix null pointer dereference in nv17tvgethdmodes In nv17tvgethdmodes, the...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989976)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989976 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/dispnv04: fix null pointer dereference in nv17tvgethdmodes In nv17tvgethdmodes, the...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988810)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988810 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix a NULL pointer dereference in amdgpudmconnectoraddcommonmodes In...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989330)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989330 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found When reading EDID fai...