144 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-41053
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Redis is an in-memory database that persists on disk. Redis does not correctly identify keys accessed by SORTRO and as a result may grant users executing this...
Malicious code in @zalastax/nolb-react-ro (npm)
The package @zalastax/nolb-react-ro was found to contain malicious code...
MAL-2025-13743 Malicious code in @zalastax/nolb-react-ro (npm)
The package @zalastax/nolb-react-ro was found to contain malicious code...
Linux Distros Unpatched Vulnerability : CVE-2024-26705
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: parisc: BTLB: Fix crash when setting up BTLB at CPU bringup When using hotplug and bringing ...
PT-2025-4536 · Unknown · Sw-Galati.Ro
Name of the Vulnerable Software and Affected Versions: sw-galati.ro iframe to embed versions n/a through 1.2 Description: The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting. This allows for Stored XSS in the iframe to embed...
CVE-2024-55506
An IDOR vulnerability in CodeAstro's Complaint Management System v1.0 version with 0 updates enables an attacker to execute arbitrary code and obtain sensitive information via the delete.php file and modifying the id parameter...
redis: Redis SORT_RO may bypass ACL configuration
Redis is an in-memory database that persists on disk. Redis does not correctly identify keys accessed by SORTRO and as a result may grant users executing this command access to keys that are not explicitly authorized by the ACL configuration. The problem exists in Redis 7.0 or newer and has been...
CVE-2024-50118
In the Linux kernel, the following vulnerability has been resolved: btrfs: reject ro-rw reconfiguration if there are hard ro requirements BUG Syzbot reports the following crash: BTRFS info device loop0 state MCS: disabling free space tree BTRFS info device loop0 state MCS: clearing compat-ro...
CVE-2024-47689 f2fs: fix to don't set SB_RDONLY in f2fs_handle_critical_error()
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to don't set SBRDONLY in f2fshandlecriticalerror syzbot reports a f2fs bug as below: ------------ cut here ------------ WARNING: CPU: 1 PID: 58 at kernel/rcu/sync.c:177 rcusyncdtor+0xcd/0x180 kernel/rcu/sync.c:177 CPU: ...
UBUNTU-CVE-2024-42068
In the Linux kernel, the following vulnerability has been resolved: bpf: Take return from setmemoryro into account with bpfproglockro setmemoryro can fail, leaving memory unprotected. Check its return and take it into account as an error...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not checking the return value of the setmemoryro function when it is used, and when the function fails, memory m...
Malicious code in ro-py-wrapper (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-5948 Malicious code in ro-py-wrapper (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-2966 Malicious code in ro-executer (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in ro-executer (npm)
--- -= Per source details. Do not edit below this line.=-...
revista.isfin.ro Cross Site Scripting vulnerability OBB-3928759
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
PT-2024-32742
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.58 Description A vulnerability in the Linux kernel has been resolved, specifically in the f2fs filesystem. The issue arises from the f2fs setting the SB RDONLY flag in an internal function rather than through...
SUSE CVE-2024-26705
In the Linux kernel, the following vulnerability has been resolved: parisc: BTLB: Fix crash when setting up BTLB at CPU bringup When using hotplug and bringing up a 32-bit CPU, ask the firmware about the BTLB information to set up the static block TLB entries. For that write access to the static...
adp2.ro Cross Site Scripting vulnerability OBB-3897385
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
monumente-etnografice.cimec.ro Cross Site Scripting vulnerability OBB-3864834
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...