EUVD-2018-20903

Malware in sbrugna...

EUVD-2021-30265

Malicious code in bioql PyPI...

WordPress xili-tidy-tags Plugin <= 1.12.06 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by zaim in WordPress Plugin xili-tidy-tags versions = 1.12.06...

CGA-5FW3-JGVV-F82J

Bulletin has no description...

CVE-2024-10783

The MainWP Child – Securely Connects to the MainWP Dashboard to Manage Multiple Sites plugin for WordPress is vulnerable to privilege escalation due to a missing authorization checks on the registersite function in all versions up to, and including, 5.2 when a site is left in an unconfigured stat...

CVE-2024-10783

CVE-2024-10783 – MainWP Child (WordPress) Root cause: missing authorization checks in register_site in all versions up to 5.2 when a site is unconfigured, enabling an unauthenticated user to login as an administrator on instances not yet connected to the MainWP Dashboard and without the unique se...

CVE-2024-10783 MainWP Child <= 5.2 - Missing Authorization to Unauthenticated Privilege Escalation

The MainWP Child – Securely Connects to the MainWP Dashboard to Manage Multiple Sites plugin for WordPress is vulnerable to privilege escalation due to a missing authorization checks on the registersite function in all versions up to, and including, 5.2 when a site is left in an unconfigured stat...

CVE-2024-5108

A vulnerability, which was classified as critical, was found in Campcodes Complete Web-Based School Management System 1.0. Affected is an unknown function of the file /view/studentpaymentdetails4.php. The manipulation of the argument index leads to sql injection. It is possible to launch the atta...

GHSA-FVX8-79HX-X82F

creationtimestamp| type| source ---|---|--- 2024-03-08 17:37:29+00:00| seen| https://t.me/ctinow/203453...

GSD-2023-1001907 drm/i915: Fix a memory leak with reused mmap_offset

drm/i915: Fix a memory leak with reused mmapoffset This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.9 by commit...

GSD-2023-1001867 can: isotp: split tx timer into transmission and timeout

can: isotp: split tx timer into transmission and timeout This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

GSD-2023-1001857 mm/MADV_COLLAPSE: catch !none !huge !bad pmd lookups

mm/MADVCOLLAPSE: catch !none !huge !bad pmd lookups This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

GSD-2023-1001043 nfc: pn533: Clear nfc_target before being used

nfc: pn533: Clear nfctarget before being used This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...

GSD-2023-1000680 drivers: dio: fix possible memory leak in dio_init()

drivers: dio: fix possible memory leak in dioinit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...

CVE-2022-46671

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

GSD-2022-1007300 sh: machvec: Use char[] for section boundaries

sh: machvec: Use char for section boundaries This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.150 by commit...

GSD-2022-1006044 bus: hisi_lpc: fix missing platform_device_put() in hisi_lpc_acpi_probe()

bus: hisilpc: fix missing platformdeviceput in hisilpcacpiprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...

GSD-2022-1005597 intel_th: msu: Fix vmalloced buffers

intelth: msu: Fix vmalloced buffers This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit 566887bad7ff2297d6b3f9659c702ba075f3d62d,...

GSD-2022-1005149 net: atlantic: fix aq_vec index out of range error

net: atlantic: fix aqvec index out of range error This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.4 by commit...

GSD-2022-1004439 powerpc/memhotplug: Add add_pages override for PPC

powerpc/memhotplug: Add addpages override for PPC This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.53 by commit...