Astra Linux - уязвимость в linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: “spufs”: fixed a leak related to the failure of spufsnewfile. This issue is triggered from spufsfilldir, and the caller of that function will call spufsrmdir in case of failure. This action actually removes everything we’ve manag...

CLSA-2026-1779101894 opensc: Fix of CVE-2023-40661

CVE-2023-40661: fix multiple smartcard pkcs15init buffer overflows, underflows and out-of-bounds writes scpkcs15initrmdir, setcoscreatekey, cosmnewfile, cosmcreatekey, scpkcs15getlastupdate, iasecc-sdo, entersafe, epass2003 keygen...

CVE-2026-30943

Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. Prior to 2.2.4, An insufficient authorization check in the file replace API allows a user with only list visibility permission UserPermListOtherUploads to delete another user's file by abusing the...

PT-2026-25356

Name of the Vulnerable Software and Affected Versions Gokapi versions prior to 2.2.4 Description Gokapi is a self-hosted file sharing server. An authorization flaw in the file replace API allows a user with list visibility permission UserPermListOtherUploads to delete another user's file by...

Azure Linux 3.0 Security Update: kernel (CVE-2025-22073)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22073 advisory. - In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak on spufsnewfile failur...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993019)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993019 advisory. In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak on spufsnewfile failure It's called from spufsfilldir, and caller of that will ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992650)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992650 advisory. In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak on spufsnewfile failure It's called from spufsfilldir, and caller of that will ...

EUVD-2018-4945

Malware in sbrugna...

DEBIAN-CVE-2025-22073

In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak on spufsnewfile failure It's called from spufsfilldir, and caller of that will do spufsrmdir in case of failure. That does remove everything we'd managed to create, but... the problem dentry is still negative...

UBUNTU-CVE-2025-22073

In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak on spufsnewfile failure It's called from spufsfilldir, and caller of that will do spufsrmdir in case of failure. That does remove everything we'd managed to create, but... the problem dentry is still negative...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly freeing resources when spufsnewfile fails, which could lead to a memory leak...

AccPack Cop 1.0 Insecure Direct Object Reference

============================================================================================================================================= | Title : AccPack Cop v1.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits | | Vendo...

SUSE CVE-2022-41444

Cross Site Scripting XSS vulnerability in Cacti 1.2.21 via crafted POST request to graphsnew.php...

Webile 跨站脚本漏洞

webileapps Webile is an application from webileapps, Inc. A cross-site scripting vulnerability exists in Webile version 1.0.1, which stems from the parameter newfilename/c of the component HTTP POST Request Handler can lead to cross-site scripting...

PT-2023-26133 · Webile · Webile

Name of the Vulnerable Software and Affected Versions: Webile version 1.0.1 Description: A vulnerability was found in the HTTP POST Request Handler component. The manipulation of the new file name/c argument leads to cross-site scripting. It is possible to launch the attack remotely. The exploit...

CVE-2023-1183

A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where the contents of the file could be written to a new file whose location was determined by the attacker...

CVE-2023-1183

A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where the contents of the file could be written to a new file whose location was determined by the attacker...

SUSE CVE-2004-1269

lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail...

CVE-2022-45539

EyouCMS = 1.6.0 was discovered a reflected-XSS in FileManager component in GET value "activepath" when creating a new file...

Cross site scripting

EyouCMS = 1.6.0 was discovered a reflected-XSS in FileManager component in GET value "activepath" when creating a new file...