ROS-20250826-07

Glib library vulnerability is related to an overflow error when processing a long invalid ISO 8601 timestamp using the gdatetimenewfromiso8601 function. ISO 8601 timestamp using the gdatetimenewfromiso8601 function. Exploitation of the vulnerability could allow an an attacker to cause a denial of...

Design/Logic Flaw

In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file pagefile.sys, hibernation file hiberfil.sys, or RAM dump of the entire system. The...

CVE-2023-32784

In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file pagefile.sys, hibernation file hiberfil.sys, or RAM dump of the entire system. The...

CVE-2023-32784

KeePass 2.x before 2.54 is vulnerable to master password exposure from memory dumps (KeePass process dumps, pagefile.sys, hibernation files, or RAM). The first character cannot be recovered, but subsequent characters may be revealed due to memory handling in KeePass. KeePass 2.54 introduces mitig...

Cross-site Scripting (XSS)

mantisbt is vulnerable to cross-site scripting XSS. The attack exists because the function stringinserthrefs does not check the protocol, allowing an attacker to inject 'javascript://' to execute arbitrary code...

Directory Traversal

next is vulnerable to directory traversal attacks. Using the /next request namespace, attackers can insert .. into a string to access files outside of the intended directory. This doesn't affect users who have a static deployment through next export...