CVE-2022-50785

The CVE-2022-50785 entry describes a Linux kernel use-after-free in fsi: occ where a device could be freed while a file descriptor is open. The root cause and mitigation are specified: use get_device and put_device in open/close functions to keep the device alive while a descriptor is open, and a...

CVE-2022-50785 fsi: occ: Prevent use after free

In the Linux kernel, the following vulnerability has been resolved: fsi: occ: Prevent use after free Use getdevice and putdevice in the open and close functions to make sure the device doesn't get freed while a file descriptor is open. Also, lock around the freeing of the device buffer and check...

CVE-2025-2320

A vulnerability has been found in 274056675 springboot-openai-chatgpt e84f6f5 and classified as critical. Affected by this vulnerability is the function submit of the file /api/blade-user/submit of the component User Handler. The manipulation leads to improper authorization. The attack can be...

Cross-site Scripting (XSS)

SSCMS is vulnerable to Cross-site Scripting XSS. The vulnerability exists because of the improper sanitization in the ajaxDivId argument in the Submit function of ActionsSearchController.Submit.cs, which allows an attacker to inject and execute malicious javascript through the...

PT-2025-53925

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free issue within the FSI file system interface component, specifically related to the occ functionality. The issue occurs because the device could ...