11 matches found
EUVD-2026-12590
This High severity RCE Remote Code Execution vulnerability was introduced in versions 9.6.0, 10.0.0, 10.1.0, 10.2.0, 11.0.0, 11.1.0, 12.0.0, and 12.1.0 of Bamboo Data Center. This RCE Remote Code Execution vulnerability, with a CVSS Score of 8.6, allows an authenticated attacker to execute...
CVE-2026-1528
ImpactA server can reply with a WebSocket frame using the 64-bit length form and an extremely large length. undici's ByteParser overflows internal math, ends up in an invalid state, and throws a fatal TypeError that terminates the process. Patches Patched in the undici version v7.24.0 and v6.24.0...
CVE-2023-52970 affecting package mariadb for versions less than 10.6.24-1
CVE-2023-52970 affecting package mariadb for versions less than 10.6.24-1. An upgraded version of the package is available that resolves this issue...
PT-2024-16015
Name of the Vulnerable Software and Affected Versions CodeChecker versions through 6.24.1 Description Authentication bypass occurs when the API URL ends with Authentication, allowing superuser access to all API endpoints other than /Authentication. These endpoints include the ability to add, edit...
WordPress plugin Comments – wpDiscuz 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Comments -...
WordPress plugin OAuth Single Sign On 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
Meinberg LANTIME Web Configuration Utility Directory Traversal Vulnerability
Meinberg LANTIME is an NTP time server from Meinberg, Germany.Web Configuration Utility is one of the web configuration utilities. A directory traversal vulnerability exists in the Upload Groupkey function of the Web Configuration Utility in Meinberg LANTIME with firmware version 6.24.004. A remo...
Linux kernel information disclosure vulnerability (CNVD-2017-06740)
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. The driver /media/video/videobuf-vmalloc.c does not initialize the videobufmapping data structure in Linux kernels prior to 2.6.24 An information disclosure vulnerability...
mysql: unspecified vulnerability related to Server:Memcached (CPU July 2015)
Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Memcached...
mysql: unspecified vulnerability related to Server:Security:Privileges (CPU July 2015)
Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Privileges...
mysql: unspecified vulnerability related to Server:RBR (CPU July 2015)
Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to RBR...