2291 matches found
CVE-2024-11692
CVE-2024-11692 describes a spoofing-related issue in Mozilla Firefox/Thunderbird where a select dropdown could be rendered over another tab, causing user confusion. The vulnerability affects Firefox versions before 133, Firefox ESR before 128.5, Thunderbird before 133, and Thunderbird before 128....
CVE-2024-11692
An attacker could cause a select dropdown to be shown over another tab; this could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox 133, Firefox ESR 128.5, Thunderbird 133, and Thunderbird 128.5...
CVE-2024-50224
In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: Fix crash when not using GPIO chip select Add check for the return value of spigetcsgpiod to avoid passing a NULL pointer to gpioddirectionoutput, preventing a crash when GPIO chip select is not used. Fix below...
CVE-2024-51841
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Abdul Awal Uzzal File Select Control For Elementor file-select-control-for-elementor allows DOM-Based XSS.This issue affects File Select Control For Elementor: from n/a through = 1.3...
CVE-2024-51841
CVE-2024-51841 is a DOM-based XSS in the ThemeNcode File Select Control For Elementor. Root cause: improper input neutralization during web page generation. Affected: File Select Control For Elementor versions
WordPress plugin File Select Control For Elementor 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
PT-2024-34969 · Elementor · File Select Control For Elementor
Name of the Vulnerable Software and Affected Versions: File Select Control For Elementor versions 1.3 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based XSS. This means that an attacker could potentially inject...
openssl: SSL_select_next_proto buffer overread
A flaw was found in OpenSSL. Affected versions of this package are vulnerable to Information Exposure through the SSLselectnextproto function. This flaw allows an attacker to cause unexpected application behavior or a crash by exploiting the buffer overread condition when the function is called...
CLSA-2024-1731344946 openssl: Fix of CVE-2024-5535
CVE-2024-5535: Validate provided client list in ssl/ssllib.c. Clarify SSLselectnextproto documentation...
PT-2024-37014
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to soft lockups in the Linux kernel's IPv6 route handling, specifically in the fib6 select path function. This occurs when the nodes of the linked list are...
SUSE CVE-2024-50224
In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: Fix crash when not using GPIO chip select Add check for the return value of spigetcsgpiod to avoid passing a NULL pointer to gpioddirectionoutput, preventing a crash when GPIO chip select is not used. Fix below...
DEBIAN-CVE-2024-50224
In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: Fix crash when not using GPIO chip select Add check for the return value of spigetcsgpiod to avoid passing a NULL pointer to gpioddirectionoutput, preventing a crash when GPIO chip select is not used. Fix below...
AZL-53118 CVE-2024-50224 affecting package kernel for versions less than 6.6.64.2-1
In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: Fix crash when not using GPIO chip select Add check for the return value of spigetcsgpiod to avoid passing a NULL pointer to gpioddirectionoutput, preventing a crash when GPIO chip select is not used. Fix below...
UBUNTU-CVE-2024-50224
In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: Fix crash when not using GPIO chip select Add check for the return value of spigetcsgpiod to avoid passing a NULL pointer to gpioddirectionoutput, preventing a crash when GPIO chip select is not used. Fix below...
CVE-2024-50224 spi: spi-fsl-dspi: Fix crash when not using GPIO chip select
In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: Fix crash when not using GPIO chip select Add check for the return value of spigetcsgpiod to avoid passing a NULL pointer to gpioddirectionoutput, preventing a crash when GPIO chip select is not used. Fix below...
CVE-2024-50224
In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: Fix crash when not using GPIO chip select Add check for the return value of spigetcsgpiod to avoid passing a NULL pointer to gpioddirectionoutput, preventing a crash when GPIO chip select is not used. Fix below...
CVE-2024-50224 spi: spi-fsl-dspi: Fix crash when not using GPIO chip select
In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: Fix crash when not using GPIO chip select Add check for the return value of spigetcsgpiod to avoid passing a NULL pointer to gpioddirectionoutput, preventing a crash when GPIO chip select is not used. Fix below...
WordPress File Select Control For Elementor plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin File Select Control For Elementor versions = 1.3...
CLSA-2024-1730801437 openssl: Fix of CVE-2024-5535
CVE-2024-5535: Validate provided client list in ssl/ssllib.c. Clarify SSLselectnextproto documentation...
CLSA-2024-1730801286 openssl: Fix of CVE-2024-5535
CVE-2024-5535: Validate provided client list in ssl/ssllib.c. Clarify SSLselectnextproto documentation...