Lucene search
+L

768 matches found

Packet Storm
Packet Storm
added 2026/02/02 12:0 a.m.130 views

📄 Serendipity 1.6.2 Cross Site Scripting

Multiple cross site scripting vulnerabilities exist in Serendipity version 1.6.2. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML. This issue is older research added to the archive. Serendipity 1.6.2 - Cross-site Scripting Advisory ID: RO-13-002 Severity: Mediu...

5.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005190)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005190 advisory. In the Linux kernel, the following vulnerability has been resolved: xfrm: validate new SA's prefixlen using SA family when sel.family is unset This expands the...

5.5CVSS5.8AI score0.00259EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/25 12:54 a.m.4 views

SUSE CVE-2023-54141

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

5.5CVSS6.4AI score0.00173EPSS
Exploits0References17
EUVD
EUVD
added 2025/12/24 3:30 p.m.7 views

EUVD-2023-60304

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

5.9AI score0.00173EPSS
Exploits0References4
NVD
NVD
added 2025/12/24 1:16 p.m.6 views

CVE-2023-54141

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

0.00173EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.4 views

CVE-2023-54141

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

5.7AI score0.00173EPSS
Exploits0References4
OSV
OSV
added 2025/12/24 1:16 p.m.4 views

UBUNTU-CVE-2023-54141

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

5.7AI score0.00173EPSS
Exploits0References5
CVE
CVE
added 2025/12/24 1:6 p.m.19 views

CVE-2023-54141

CVE-2023-54141 describes a Linux kernel issue in the wifi driver for ath11k on IPQ5018. The root cause is a missing hw_ops->get_ring_selector() implementation; after clients connect, the code calls get_ring_selector() but the member is not set for IPQ5018, causing a NULL pointer dereference in...

6AI score0.00173EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/24 1:6 p.m.28 views

CVE-2023-54141 wifi: ath11k: Add missing hw_ops->get_ring_selector() for IPQ5018

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

0.00173EPSS
Exploits0References3
OSV
OSV
added 2025/12/24 1:6 p.m.7 views

CVE-2023-54141 wifi: ath11k: Add missing hw_ops->get_ring_selector() for IPQ5018

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

6.3AI score0.00173EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.8 views

PT-2025-53218

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ath11k module related to the handling of data transmission after client connections. Specifically, the hw ops-get ring selector function is...

5.9AI score0.00173EPSS
Exploits0
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the lack of the hwops-getringselector function, which could lead to a null pointer dereference...

6AI score0.00173EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/24 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-54141

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018,...

5.8AI score0.00173EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/12/19 9:32 p.m.8 views

Tuta Mail has DOM attribute and CSS injection in its Contact Viewer feature

Impact Users importing contacts from untrusted sources. Specifically crafted contact data can lead to some of DOM modifications for the link button next to the field e.g. the link address can be overriden. CSS can be manipulated to give the button arbitrary look and change it's size so that any...

6.9AI score
Exploits0References8Affected Software1
RedhatCVE
RedhatCVE
added 2025/11/27 4:59 p.m.14 views

CVE-2025-61167

SIGB PMB v8.0.1.14 was discovered to contain multiple SQL injection vulnerabilities in the /opaccss/ajaxselector.php component via the id and datas parameters...

6.5CVSS8.4AI score0.00183EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/27 12:30 p.m.9 views

EUVD-2025-199820

In Apache CloudStack improper control of generation of code 'Code Injection' vulnerability is found in the following APIs which are accessible only to admins. quotaTariffCreate quotaTariffUpdate createSecondaryStorageSelector updateSecondaryStorageSelector updateHost updateStorage This issue...

6.9AI score0.00398EPSS
Exploits0References3
NVD
NVD
added 2025/11/27 12:15 p.m.20 views

CVE-2025-59302

In Apache CloudStack improper control of generation of code 'Code Injection' vulnerability is found in the following APIs which are accessible only to admins. quotaTariffCreate quotaTariffUpdate createSecondaryStorageSelector updateSecondaryStorageSelector updateHost updateStorage This issue...

4.7CVSS0.00398EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/11/27 9:5 a.m.6 views

In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Selector_List::populate_extends in SharedPtr.hpp (used by ast.cpp and ast_selectors.cpp) may cause a Denial of Service (application crash) via a crafted sass input file.

...

6.5CVSS7AI score0.01829EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/11/27 12:0 a.m.9 views

PT-2025-48264

Name of the Vulnerable Software and Affected Versions Apache CloudStack versions 4.18.0 through 4.20.1 Apache CloudStack versions 4.21.0 through 4.21.9 Description An improper control of code generation 'Code Injection' issue exists in Apache CloudStack, specifically within several APIs accessibl...

4.7CVSS7.3AI score0.00398EPSS
Exploits0References9
EUVD
EUVD
added 2025/11/25 9:32 p.m.6 views

EUVD-2025-199634

SIGB PMB v8.0.1.14 was discovered to contain multiple SQL injection vulnerabilities in the /opaccss/ajaxselector.php component via the id and datas parameters...

6.5CVSS7.9AI score0.00183EPSS
Exploits0References5
Rows per page
Query Builder