H3C GR-1800AX 安全漏洞

The H3C GR-1800AX is an enterprise-class wireless router from China's Xinhua San H3C. A security vulnerability exists in the H3C GR-1800AX 100R008 and prior versions, which originates from a buffer overflow due to the param parameter manipulation of the EnableIpv6 function in the /goform/aspForm...

libsoup: Integer overflow in append_param_quoted

A flaw was found in libsoup. The libsoup appendparamquoted function may contain an overflow bug resulting in a buffer under-read...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible deadlock in the hibernatecompressorparamset function...

CVE-2025-4110

A vulnerability was found in PHPGurukul Pre-School Enrollment System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/edit-teacher.php. The manipulation of the argument mobilenumber leads to sql injection. The attack may be launched remotely...

CVE-2025-4020

A vulnerability was found in PHPGurukul Old Age Home Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /contact.php. The manipulation of the argument fname leads to sql injection. The attack may be launched remotely. The exploit has...

PT-2025-21904 · Git +1 · Pcre2

Name of the Vulnerable Software and Affected Versions: pcre2 affected versions not specified Description: The software is susceptible to a negative-size-param issue. The crash state involves the recurse update offsets and match functions, ultimately leading to a crash within the pcre2 match 8...

H3C GR-3000AX 安全漏洞

The H3C GR-3000AX is an enterprise-grade Wi-Fi 6 wireless router from China's Xinhua San H3C. A security vulnerability exists in H3C GR-3000AX V100R006 and prior versions, which originates from a buffer overflow due to improper handling of the parameter param in multiple functions in...

DEBIAN-CVE-2025-37860

In the Linux kernel, the following vulnerability has been resolved: sfc: fix NULL dereferences in ef100processdesignparam Since cited commit, ef100probemain and hence also ef100checkdesignparams run before efx-netdev is created; consequently, we cannot netifsettsomaxsize or segs at this point. Mo...

CVE-2025-32388 SvelteKit allows XSS via tracked search_params

SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. Prior to 2.20.6 , unsanitized search param names cause XSS vulnerability. You are affected if you iterate over all entries of event.url.searchParams inside a server load function. Attackers can explo...

CVE-2025-32050 Libsoup: integer overflow in append_param_quoted

A flaw was found in libsoup. The libsoup appendparamquoted function may contain an overflow bug resulting in a buffer under-read...

libsoup 安全漏洞

libsoup is a GNOME HTTP client/server library from the GNOME Project. A security vulnerability exists in libsoup that stems from a buffer overflow in the appendparamquoted function...

Medium: rust

Issue Overview: The openssl crate before 0.10.55 for Rust allows an out-of-bounds read via an empty string to X509VerifyParamRef::sethost. CVE-2023-53159 Affected Packages: rust Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference...

The vulnerability of the Linux operating system’s kernel WiFi component, which allows a hacker to increase their privileges within the system

The vulnerability of the wilcparsejoinbssparam function in the Linux kernel-based WiFi component is related to errors that occur after deallocation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

CVE-2025-2679

A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /contact-us.php. The manipulation of the argument pagetitle leads to sql injection. It is possible to launch the attack remotely. The exploit...

PT-2025-18426

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock vulnerability has been identified in the Linux kernel, specifically in the hibernate compressor param set function. This issue arises when attempting to acquire the system...

SUSE CVE-2022-49180

In the Linux kernel, the following vulnerability has been resolved: LSM: general protection fault in legacyparseparam The usual LSM hook "bail on fail" scheme doesn't work for cases where a security module may return an error code indicating that it does not recognize an input. In this particular...

CVE-2022-49564

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - add param check for DH Reject requests with a source buffer that is bigger than the size of the key. This is to prevent a possible integer underflow that might happen when copying the source scatterlist into a linea...

UBUNTU-CVE-2022-49563

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - add param check for RSA Reject requests with a source buffer that is bigger than the size of the key. This is to prevent a possible integer underflow that might happen when copying the source scatterlist into a line...

DEBIAN-CVE-2022-49180

In the Linux kernel, the following vulnerability has been resolved: LSM: general protection fault in legacyparseparam The usual LSM hook "bail on fail" scheme doesn't work for cases where a security module may return an error code indicating that it does not recognize an input. In this particular...

UBUNTU-CVE-2022-49180

In the Linux kernel, the following vulnerability has been resolved: LSM: general protection fault in legacyparseparam The usual LSM hook "bail on fail" scheme doesn't work for cases where a security module may return an error code indicating that it does not recognize an input. In this particular...