CVE-2025-25119 WordPress Woocommerce osCommerce Sync plugin <= 2.0.20 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alejandro Aranda Woocommerce osCommerce Sync woo-oscommerce-sync allows Reflected XSS.This issue affects Woocommerce osCommerce Sync: from n/a through = 2.0.20...

MAL-2025-1863 Malicious code in instacart-sync (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in google-sync (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-1828 Malicious code in google-sync (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in epicagames-sync (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-1805 Malicious code in epicagames-sync (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in amazon-sync (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-1720 Malicious code in amazon-sync (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in airbnb-sync (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-1719 Malicious code in airbnb-sync (npm)

--- -= Per source details. Do not edit below this line.=-...

CVE-2024-53034

Memory corruption occurs during an Escape call if an invalid Kernel Mode CPU event and sync object handle are passed with the DriverKnownEscape flag reset...

CVE-2024-53034

CVE-2024-53034 affects Qualcomm chipsets’ DSP_Services, where memory corruption occurs during an Escape call if an invalid Kernel Mode CPU event and sync object handle are passed with DriverKnownEscape flag reset. Root cause: memory corruption in the Escape handling path when invalid kernel-event...

WordPress plugin Woocommerce osCommerce Sync 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

DEBIAN-CVE-2022-49733

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC There is a small race window at sndpcmosssync that is called from OSS PCM SNDCTLDSPSYNC ioctl; namely the function calls sndpcmossmakeready at first, then takes the paramslock mutex for t...

CVE-2022-49733 ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC There is a small race window at sndpcmosssync that is called from OSS PCM SNDCTLDSPSYNC ioctl; namely the function calls sndpcmossmakeready at first, then takes the paramslock mutex for t...

SUSE CVE-2024-58013

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmtremoveadvmonitorsync This fixes the following crash: ================================================================== BUG: KASAN: slab-use-after-free in...

DEBIAN-CVE-2024-58013

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmtremoveadvmonitorsync This fixes the following crash: ================================================================== BUG: KASAN: slab-use-after-free in...

SUSE CVE-2022-49130

In the Linux kernel, the following vulnerability has been resolved: ath11k: mhi: use mhisyncpowerup If amss.bin was missing ath11k would crash during 'rmmod ath11kpci'. The reason for that was that we were using mhiasyncpowerup which does not check any errors. But mhisyncpowerup on the other hand...

SUSE CVE-2022-49282

In the Linux kernel, the following vulnerability has been resolved: f2fs: quota: fix loop condition at f2fsquotasync cnt should be passed to sbhasquotaactive instead of type to check active quota properly. Moreover, when the type is -1, the compiler with enough inline knowledge can discard...

SUSE CVE-2022-49309

In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8723bs: Fix deadlock in rtwsurveydoneeventcallback There is a deadlock in rtwsurveydoneeventcallback, which is shown below: Thread 1 | Thread 2 | settimer rtwsurveydoneeventcallback| modtimer spinlockbh //1 |...