Canon Printers Multiple Vulnerabilities (CP2026-001)

Multiple vulnerabilities have been identified for certain Canon Small Office Multifunction Printers and Laser Printers. SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

PHPGurukul News Portal Code Issues and Vulnerabilities

PHPGurukul News Portal is a news portal website operated by PHPGurukul Corporation. Version 1.0 of PHPGurukul News Portal has code vulnerabilities; these vulnerabilities stem from the unlimited uploading feature in the profile image processing component...

Multi-Agent Collaborative Intrusion Detection for Low-Altitude Economy IoT: An LLM-Enhanced Agentic AI Framework

The rapid expansion of low-altitude economy Internet of Things LAE-IoT networks has created unprecedented security challenges due to dynamic three-dimensional mobility patterns, distributed autonomous operations, and severe resource constraints. Traditional intrusion detection systems designed fo...

CVE-2025-71156

In the Linux kernel, the following vulnerability has been resolved: gve: defer interrupt enabling until NAPI registration Currently, interrupts are automatically enabled immediately upon request. This allows interrupt to fire before the associated NAPI context is fully initialized and cause...

OESA-2026-1222 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdfwritecmap in...

Exploit for Cross-site Scripting in Typo3 Html_Sanitizer

Stored XSS exploit in TYPO3 HTML Sanitizer CVE-...

Important: sox

Issue Overview: SoX 14.4.2 contains a division by zero vulnerability when handling WAV files that can cause program crashes. Attackers can trigger a floating point exception by providing a specially crafted WAV file that causes arithmetic errors during sound file processing. CVE-2022-50798 Affect...

Linux Kernel Security Vulnerabilities

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the activation of interrupts before the NAPI context is initialized, potentially leading to kerne...

EUVD-2026-4132

Umbraco.Forms CDN may cache sensitive form uploads when processed by ImageSharp...

GHSA-7JXJ-RPX7-PH2C Umbraco.Forms CDN may cache sensitive form uploads when processed by ImageSharp

Impact Protected files uploaded through Umbraco Forms may be served to unauthenticated users when a CDN or caching layer is present and ImageSharp processes the request. ImageSharp sets aggressive cache headers by default, which can cause intermediary caches to store and serve files that should...

CVE-2026-1225 Malicious logback.xml configuration file allows instantiation of arbitrary classes

ACE vulnerability in configuration file processing by QOS.CH logback-core up to and including version 1.5.24 in Java applications, allows an attacker to instantiate classes already present on the class path by compromising an existing logback configuration file. The instantiation of a potentially...

CVE-2026-1225

ACE vulnerability in configuration file processing by QOS.CH logback-core up to and including version 1.5.24 in Java applications, allows an attacker to instantiate classes already present on the class path by compromising an existing logback configuration file. The instantiation of a potentially...

[SECURITY] Fedora 43 Update: mingw-libxslt-1.1.43-4.fc43

This C library allows to transform XML files into other XML files or HTML, text, ... using the standard XSLT stylesheet transformation mechanism. To use it you need to have a version of libxml2 =3D 2.6.27 installed. The xsltproc command is a command line interface to the XSLT engine...

CBL Mariner 2.0 Security Update: CBL-Mariner Releases (CVE-2025-11230)

The version of CBL-Mariner Releases installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-11230 advisory. - Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial...

Failed to perform post-processing for plug-in. Error: The issuer certificate does not have a Basic Constraints extension.

Challenge After upgrading a Windows-based Veeam Backup & Replication deployment to version 13.0.1 or higher, the following error may occur: Failed to perform post-processing for plug-in $pluginName Linux $machine Error: The issuer certificate does not have a Basic Constraints extension. Examples:...

Horilla authorization issue vulnerability

Horilla is a free open-source human resources software developed by Horilla Company. Version 1.4.0 of Horilla contains an authorization vulnerability. This vulnerability stems from defects in the equality checks within the OTP processing logic, which could lead to a complete bypass of two-factor...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-27009)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27009 advisory. - In the Linux kernel, the following vulnerability has been resolved: s390/cio: fix race condition...

Seroval security vulnerabilities

Seroval is a formatted Java library developed by Alexis H. Munsayac. Versions of Seroval 1.4.0 and earlier contain security vulnerabilities. These vulnerabilities stem from the handling of overly large array length values during deserialization, which can significantly increase processing time...

ImageMagick code vulnerabilities

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 14.10.1 have code vulnerabilities that stem from issues with the MSL parser, particularly when handling...

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2025-64720)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-64720 advisory. - LIBPNG is a reference library for use in applications that read, create, and manipulate PNG...