UBUNTU-CVE-2025-2754

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as critical. Affected by this vulnerability is the function Assimp::AC3DImporter::ConvertObjectSection of the file code/AssetLib/AC/ACLoader.cpp of the component AC3D File Handler. The manipulation of the...

WordPress plugin AFI 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress plugin AFI 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress plugin Slider by 10Web 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress plugin Form Maker by 10Web 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

Important: Red Hat Security Advisory: php:7.4 security update

An update for the php:7.4 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service. Red Hat Product Security has rated this...

iBanking 安全漏洞

iBanking is an information system by Martin Mbithi, an individual developer. A security vulnerability exists in iBanking version v2.0.0, which originates from a cross-site scripting vulnerability in the update section of the client configuration file, which allows an attacker to execute arbitrary...

CVE-2025-25618

Incorrect Access Control in Unifiedtransform 2.0 leads to Privilege Escalation allowing the change of Section Name and Room Number by Teachers...

CVE-2025-25618

CVE-2025-25618 affects Unifiedtransform 2.0. Root cause: improper access control that permits privilege escalation, enabling teachers to change section names and room numbers. Impact is limited to unauthorized modifications by users with teacher privileges; CVSS 3.1 metrics indicate Network acces...

Siemens SIMATIC S7-1500 TM MFP NULL Pointer Dereference (CVE-2024-41055)

In the Linux kernel, the following vulnerability has been resolved: mm: prevent derefencing NULL ptr in pfnsectionvalid Commit 5ec8e8ea8b77 mm/sparsemem: fix race in accessing memorysection-usage changed pfnsectionvalid to add a READONCE call around ms-usage to fix a race with sectiondeactivate...

CLSA-2025-1741624657 bind: Fix of CVE-2024-11187

CVE-2024-11187: fix Denial of Service via Additional Section Resource Exhaustion in BIND 9...

CLSA-2025-1741216880 bind: Fix of CVE-2024-11187

CVE-2024-11187: fix Denial of Service via Additional Section Resource Exhaustion in BIND 9...

CLSA-2025-1741216137 bind: Fix of CVE-2024-11187

CVE-2024-11187: limit additional section record while queries processing to prevent CPU exhaustion...

Linux Distros Unpatched Vulnerability : CVE-2023-52800

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix htt pktlog locking The ath11k active pdevs are protected by RCU but the ht...

Linux Distros Unpatched Vulnerability : CVE-2024-26678

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: x86/efistub: Use 1:1 file:memory mapping for PE/COFF .compat section The .compat section is ...

CLSA-2025-1741126041 bind: Fix of CVE-2024-11187

CVE-2024-11187: fix excessive resource usage by limiting additional section processing and adjusting resolver tests...

CVE-2025-26949

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Team Section Block team-section allows Stored XSS.This issue affects Team Section Block: from n/a through = 1.0.9...

CVE-2025-26947

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bPlugins Services Section block services-section allows Stored XSS.This issue affects Services Section block: from n/a through = 1.3.4...

DEBIAN-CVE-2022-49675

In the Linux kernel, the following vulnerability has been resolved: tick/nohz: unexport init-annotated ticknohzfullsetup EXPORTSYMBOL and init is a bad combination because the .init.text section is freed up after the initialization. Hence, modules cannot use symbols annotated init. The access to ...

DEBIAN-CVE-2022-49164

In the Linux kernel, the following vulnerability has been resolved: powerpc/tm: Fix more userspace r13 corruption Commit cf13435b730a "powerpc/tm: Fix userspace r13 corruption" fixes a problem in treclaim where a SLB miss can occur on the threadstruct-ckptregs while SCRATCH0 is live with the save...