18 matches found
PT-2025-34434
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A revert was implemented to address an issue where the dma buf field in the drm gem object structure became unstable during the object instance's lifetime. Specifically, the field coul...
PT-2025-34433
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists due to an unstable dma buf field within the drm gem object structure in the Linux kernel. The field can become NULL when user space releases the final GEM handle on the...
PT-2025-38571
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the wifi subsystem, specifically in the cfg80211 component, leading to a use-after-free condition in the cmp bss function. This issue was addresse...
PT-2025-7758 · Unknown · Reactive Mortgage Calculator
Name of the Vulnerable Software and Affected Versions: Reactive Mortgage Calculator versions 1.1 and earlier Description: The issue is related to improper neutralization of input during web page generation, which leads to a Cross-site Scripting XSS vulnerability. Specifically, it is a Stored XSS...
PT-2025-5556 · Unknown · Notfound Bridge Core
Name of the Vulnerable Software and Affected Versions: NotFound Bridge Core versions n/a through 3.3 Description: The issue is related to a Missing Authorization vulnerability in NotFound Bridge Core. This vulnerability affects the authorization process, potentially allowing unauthorized access...
PT-2024-13500 · Themewinter · Wpcafe
Name of the Vulnerable Software and Affected Versions: WPCafe versions through 2.2.22 Description: The issue is related to a Missing Authorization vulnerability in Themewinter WPCafe, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions...
PT-2024-34780 · Unknown · Gmo Social Connection
Name of the Vulnerable Software and Affected Versions: GMO Social Connection versions 1.2 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that also allows Cross-Site Scripting XSS. This means an attacker could potentially trick a user into performi...
PT-2024-32770 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: A severe issue was disclosed for the Linux Kernel. The upstream kernel version 6.6.58 fixes bugs and vulnerabilities. For more information about the vulnerabilities, additional resourc...
PT-2024-23467 · Delucks Gmbh · Delucks Seo
Name of the Vulnerable Software and Affected Versions: DELUCKS SEO versions 2.5.4 and earlier Description: The issue is related to a Missing Authorization vulnerability in DELUCKS GmbH DELUCKS SEO. Recommendations: For DELUCKS SEO versions 2.5.4 and earlier, update to a version that contains a fi...
PT-2024-25983 · Themeqx · Themeqx Letterpress
Name of the Vulnerable Software and Affected Versions: Themeqx LetterPress versions 1.2.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an attacker can inje...
PT-2024-24437 · Libsyn · Libsyn Publisher Hub
Name of the Vulnerable Software and Affected Versions: Libsyn Publisher Hub versions 1.4.4 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application...
PT-2024-23874 · Unknown · Sizam Rehub
Name of the Vulnerable Software and Affected Versions: Sizam Rehub versions through 19.6.1 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation by injecting malicious S...
PT-2024-23289 · Unknown · Contact Form To Any Api
Name of the Vulnerable Software and Affected Versions: Contact Form to Any API versions 1.1.8 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation by...
PT-2024-37896 · Grafana · Grafana
Name of the Vulnerable Software and Affected Versions: Grafana affected versions not specified Description: A medium severity security fix has been released for Grafana. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...
PT-2023-31082 · Oceanwp · Ocean Extra
Name of the Vulnerable Software and Affected Versions: Ocean Extra versions through 2.2.2 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability in OceanWP Ocean Extra. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web...
PT-2023-36300 · Suse · Container-Suseconnect
Name of the Vulnerable Software and Affected Versions: container-suseconnect affected versions not specified Description: The issue is related to a security release in the go 1.21 package. The container-suseconnect package has been rebuilt with this security release to address the issue. There is...
PT-2023-27150 · Unknown +1 · Routinator +1
Name of the Vulnerable Software and Affected Versions: Routinator versions up to and including 0.12.1 Description: The issue is caused by insufficient input checking in the bcder library, which may lead to a crash when trying to parse certain malformed RPKI objects. Recommendations: For versions ...
PT-2012-5585 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: A remote code execution issue exists due to the way Microsoft Windows parses filenames, potentially allowing attackers to execute arbitrary code in the context of the current...