PT-2025-33673 · Aiven · Aiven-Db-Migrate

Name of the Vulnerable Software and Affected Versions: aiven-db-migrate versions prior to 1.0.7 Description: aiven-db-migrate is a database migration tool. A privilege escalation issue exists that could allow elevation to superuser inside PostgreSQL databases during a migration from an untrusted...

AiLux imx6 Security Vulnerability

AiLux imx6 is a computing module from AiLux. A security vulnerability exists in versions prior to AiLux imx6 bundle imx61.0.7-2, which stems from the use of hard-coded credentials that allow an unauthenticated, remote attacker to access the database and all contained data...

Delta Electronics InfraSuite Device Master Security Vulnerability

Delta Electronics InfraSuite Device Master is a device used to simplify and automate the monitoring of critical equipment from Delta Electronics Taiwan, China. A security vulnerability exists in Delta Electronics InfraSuite Device Master v.1.0.7 and prior versions, which originated from a...

CVE-2017-18527

The pagination plugin before 1.0.7 for WordPress has multiple XSS issues...

Irssi Out-of-Bounds Read Vulnerability

Irssi is a free, open source IRC client for use in Linux and Unix operating systems. An out-of-bounds read vulnerability exists in Irssi versions prior to 1.0.7 and 1.1.x prior to 1.1.1, which stems from the program's failure to properly handle nicknames and can be exploited by a remote attacker ...

Irssi null pointer dereference vulnerability (CNVD-2019-19208)

Irssi is a free, open source IRC client for use in Linux and Unix operating systems. A null pointer dereference vulnerability exists in Irssi versions prior to 1.0.7 and 1.1.x prior to 1.1.1, which can be exploited by a remote attacker to cause a denial of service null pointer backreference...

DEBIAN-CVE-2018-7054

An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. There is a use-after-free when a server is disconnected during netsplits. NOTE: this issue exists because of an incomplete fix for CVE-2017-7191...

ALPINE-CVE-2018-7052

An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. When the number of windows exceeds the available space, a crash due to a NULL pointer dereference would occur...

UBUNTU-CVE-2018-7052

An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. When the number of windows exceeds the available space, a crash due to a NULL pointer dereference would occur...

Roundcube webmail cross-site scripting vulnerability

RoundCube Webmail is a browser-based IMAP client. A cross-site scripting vulnerability in program/js/app.js in Roundcube webmail versions prior to 1.0.7, 1.1.x-1.1.3 allows remote attackers to inject arbitrary web script or HTML by dragging and dropping the filename in a file upload...