tar has a PAX header desynchronization issue

Summary When a tar stream contains multiple "header" entries prior to a file entry, tar-rs applies the PAX header x to the next entry in the stream, regardless of type. For example, a stream of x - L - file PAX, GNU longname, file would result in x's extensions being applied to L rather than to...

CVE-2024-52787

An issue in the uploaddocuments method of libre-chat v0.0.6 allows attackers to execute a path traversal via supplying a crafted filename in an uploaded file...

CVE-2024-49995

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2024-47365

CVE-2024-47365 is a stored XSS vulnerability in the WordPress plugin Automatically Hierarchic Categories in Menu, affecting versions up to 2.0.5. The issue arises from improper input neutralization during web page generation and can lead to stored cross-site scripting. Patch guidance across conne...

MAL-2024-2420 Malicious code in @terraform-aws-github-runner/gh-agent-syncer (npm)

--- -= Per source details. Do not edit below this line.=-...

CVE-2023-48958

gpac 2.3-DEV-rev617-g671976fcc-master contains memory leaks in gfmpdresolveurl mediatools/mpd.c:4589...

GHSA-VCVR-V426-3M3M org.xwiki.platform:xwiki-platform-office-importer vulnerable to arbitrary server side file writing from account through office converter

Impact Triggering the office converter with a specially crafted file name allows writing the attachment's content to an attacker-controlled location on the server as long as the Java process has write access to that location. In particular in the combination with attachment moving, a feature...

CVE-2023-41595

An issue in xui-xray v1.8.3 allows attackers to obtain sensitive information via default password...

CVE-2023-2754

The Cloudflare WARP client for Windows assigns loopback IPv4 addresses for the DNS Servers, since WARP acts as local DNS server that performs DNS queries in a secure manner, however, if a user is connected to WARP over an IPv6-capable network, te WARP client did not assign loopback IPv6 addresses...

WP-Lister Lite for Amazon < 2.4.4 - Reflected XSS

The plugin does not sanitize and escapes a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which can be used against high-privilege users such as admin. PoC 1. Install and activate WooCommerce dependency, no setup required 2. Install and activate the...

CVE-2022-35009

PNGDec commit 8abf6be was discovered to contain a memory allocation problem via asanmalloclinux.cpp...

CVE-2022-36266

CVE-2022-36266 affects Airspan AirSpot 5410 (versions 0.3.4.1-4 and earlier). The issue is a stored XSS vulnerability in the login.cgi endpoint, which does not verify authentication. A malicious request can carry a base32-encoded XSS payload that is stored and later reflected on the user settings...

GHSA-7388-7VQ2-M4F4 Concrete CMS Cross-site Scripting via Survey Blocks

Concrete CMS formerly concrete5 before 8.5.5 allows remote authenticated users to conduct Cross-site Scripting XSS attacks via a crafted survey block. This requires at least Editor privileges...

CVE-2021-46104

An issue was discovered in webpservergo 0.4.0. There is a directory traversal vulnerability that can read arbitrary file information on the server...

CVE-2021-35634 affecting package mysql 8.0.26-2

CVE-2021-35634 affecting package mysql 8.0.26-2. An upgraded version of the package is available that resolves this issue...

Denial Of Service (DoS)

tomcat-websocket is vulnerable to denial of service DoS attacks. An out of memory OOM occurs as the internal upgrade handler doesn't close the associated web connection on destroy causing an application crash...

CVE-2021-22392

The CVE-2021-22392 entry concerns Huawei smartphones running EMUI/Magic UI. The root cause is an incorrect calculation of a buffer size, as described in the sources. The vulnerability may allow verification bypass and could guide an attacker to abnormal addresses. The available documents do not s...

CVE-2021-32942

The CVE-2021-32942 vulnerability affects AVEVA InTouch Runtime (WindowViewer) prior to and including 2020 R2, where a privileged, authorized user who creates a diagnostic memory dump to a non-protected location can cause cleartext credentials to be exposed. Root cause: information disclosure thro...

CVE-2021-31919

An issue was discovered in the rkyv crate before 0.6.0 for Rust. When an archive is created via serialization, the archive content may contain uninitialized values of certain parts of a struct...

OSV-2017-24 Heap-buffer-overflow in pnm_type_find

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=4039 Crash type: Heap-buffer-overflow READ 1 Crash state: pnmtypefind gsttypefindfactorycallfunction gsttypefindhelperfordata...