4571 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-22059
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: udp: Fix multiple wraparounds of sk-skrmemalloc. udpenqueuescheduleskb has the following...
Linux Distros Unpatched Vulnerability : CVE-2025-4035
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libsoup. When handling cookies, libsoup clients mistakenly allow cookies to be set for public suffix domains if the domain contains at least...
Linux Distros Unpatched Vulnerability : CVE-2021-25216
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as...
Linux Distros Unpatched Vulnerability : CVE-2024-38550
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ASoC: kirkwood: Fix potential NULL dereference In kirkwooddmahwparams mvmbusdraminfo returns...
CVE-2025-38167 affecting package kernel for versions less than 6.6.96.1-1
CVE-2025-38167 affecting package kernel for versions less than 6.6.96.1-1. A patched version of the package is available...
CVE-2025-38063 affecting package kernel for versions less than 6.6.96.1-1
CVE-2025-38063 affecting package kernel for versions less than 6.6.96.1-1. A patched version of the package is available...
CVE-2025-38004 affecting package kernel for versions less than 6.6.96.1-1
CVE-2025-38004 affecting package kernel for versions less than 6.6.96.1-1. A patched version of the package is available...
CVE-2025-38220 affecting package kernel for versions less than 6.6.96.1-1
CVE-2025-38220 affecting package kernel for versions less than 6.6.96.1-1. A patched version of the package is available...
Linux Distros Unpatched Vulnerability : CVE-2025-37961
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipvs: fix uninit-value for saddr in dooutputroute4 syzbot reports for uninit-value for the saddr argument 1. commit 4754957f04f5 ipvs: do not use random local...
CVE-2025-8553 atjiu pybbs list cross site scripting
A vulnerability classified as problematic was found in atjiu pybbs up to 6.0.0. This vulnerability affects unknown code of the file /admin/sensitiveword/list. The manipulation of the argument word leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed ...
CVE-2025-8553
CVE-2025-8553 affects atjiu pybbs up to 6.0.0. The vulnerability is a cross-site scripting in the /admin/sensitive_word/list handler triggered by manipulating the word parameter. The issue is exploitable remotely and has been publicly disclosed. A patch is available (hash: 2fe4a51afbce0068c291bc1...
CVE-2025-8549 atjiu pybbs UserAdminController.java update weak password
A vulnerability was found in atjiu pybbs up to 6.0.0. It has been classified as critical. Affected is the function update of the file src/main/java/co/yiiu/pybbs/controller/admin/UserAdminController.java. The manipulation leads to weak password requirements. It is possible to launch the attack...
CVE-2025-8547 atjiu pybbs Email Verification improper authorization
A vulnerability has been found in atjiu pybbs up to 6.0.0 and classified as critical. This vulnerability affects unknown code of the component Email Verification Handler. The manipulation leads to improper authorization. The attack can be initiated remotely. The exploit has been disclosed to the...
CVE-2025-8546 atjiu pybbs Verification Code login Captcha
A vulnerability, which was classified as problematic, was found in atjiu pybbs up to 6.0.0. This affects the function adminlogin/login of the component Verification Code Handler. The manipulation leads to guessable captcha. It is possible to initiate the attack remotely. The exploit has been...
DEBIAN-CVE-2025-8534
A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the file tools/tiff2ps.c of the component tiff2ps. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The complexity ...
UBUNTU-CVE-2025-8534
A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the file tools/tiff2ps.c of the component tiff2ps. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The complexity ...
WordPress WP Easy Contact plugin <= 4.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via noaccessmsg Parameter vulnerability discovered by muhammad yudha in WordPress Plugin WP Easy Contact versions = 4.0.1...
WordPress Qi Addons for Elementor plugin <= 1.9.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via TypeOut Text Widget vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via TypeOut Text Widget vulnerability discovered by zer0gh0st in WordPress Plugin Qi Addons For Elementor versions = 1.9.2...
CVE-2025-8517
A vulnerability was detected in givanz Vvveb 1.0.6.1. Impacted is an unknown function. The manipulation results in session fixiation. The attack can be launched remotely. The exploit is now public and may be used. Upgrading to version 1.0.7 is recommended to address this issue. The patch is...
CVE-2025-20698
In Power HAL, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09915400; Issue ID: MSV-3793...