ROOT-OS-DEBIAN-11-CVE-2025-38464 CVE-2025-38464 in rootio-linux - Patched by Root

Root has patched CVE-2025-38464 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

IceWarp 路径遍历漏洞

IceWarp is an integrated enterprise communication and collaboration platform developed by the Czech company IceWarp. It aims to provide organizations with various tools and features to support internal and external communication, collaboration, and business processes. IceWarp has a path traversal...

UBUNTU-CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

Western Digital My Cloud 命令注入漏洞

Western Digital My Cloud is a personal cloud storage device from Western Digital. A security vulnerability exists in Western Digital My Cloud OS 5 prior to version 5.26.119, which stems from a command injection vulnerability that could allow an attacker to execute code against vulnerable CGI file...

Hasura GraphQL 2.2.0 - Information Disclosure

Exploit Title: Hasura GraphQL 2.2.0 - Information Disclosure Software: Hasura GraphQL Community Software Link: https://github.com/hasura/graphql-engine Version: 2.2.0 Exploit Author: Dolev Farhi Date: 5/05/2022 Tested on: Ubuntu import requests SERVERADDR = 'x.x.x.x' url =...

NETGEAR R6400v2 Buffer Overflow Vulnerability

The NETGEAR R6400v2 is a router from Netgear, Inc. A hardware device that connects two or more networks and acts as a gateway between networks, the NETGEAR R6400v2 is vulnerable to a buffer overflow vulnerability that stems from a process failing to properly validate the length of user-supplied...

D-Link DIR-3060 命令注入漏洞

The D-Link DIR-3060 is a router from China-based AUO D-Link. The D-Link DIR-3060 suffers from a command injection vulnerability that can be exploited by an attacker to remotely authenticate a user to inject arbitrary commands in the administrative or root environment...