193 matches found
EUVD-2022-39376
Malicious code in bioql PyPI...
EUVD-2022-39380
Malicious code in bioql PyPI...
EUVD-2025-9424
Malicious code in bioql PyPI...
EUVD-2022-39381
Malicious code in bioql PyPI...
EUVD-2022-39384
Malicious code in bioql PyPI...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an attempt by the scheduler to balance tasks to the currently running CPU, which could result in a warning...
Authorization Bypass Through User-Controlled Key
Overview com.xuxueli:xxl-job is a distributed task scheduling framework. Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key in the remove function. An attacker can delete unauthorized resources by manipulating the ID parameter remotely. Remediatio...
XXL-JOB 安全漏洞
XXL-JOB is a distributed task scheduling platform by the individual developer Xu Xueli xuxueli. A security vulnerability exists in XXL-JOB 3.1.1 and earlier versions, which stems from incorrect manipulation of parameter IDs, resulting in improper control of resource identifiers...
CVE-2022-50174
In the Linux kernel, the following vulnerability has been resolved: net: hinic: avoid kernel hung in hinicgetstats64 When using hinic device as a bond slave device, and reading device stats of master bond device, the kernel may hung. The kernel panic calltrace as follows: Kernel panic - not...
CVE-2022-50193 erofs: wake up all waiters after z_erofs_lzma_head ready
In the Linux kernel, the following vulnerability has been resolved: erofs: wake up all waiters after zerofslzmahead ready When the user mounts the erofs second times, the decompression thread may hung. The problem happens due to a sequence of steps like the following: 1 Task A called...
CVE-2022-50174
The CVE-2022-50174 issue affects the Linux kernel net/hinic path when a hinic device is used as a bond slave and statistics are read from the master bond device. The root cause is in hinic_get_stats64(), which previously called down(&nic_dev->mgmt_lock) to protect a critical section, risking s...
CVE-2022-50100
CVE-2022-50100 affects the Linux kernel sched/core: Do not requeue a task on a CPU excluded from cpus_mask. The issue arises from a ttwu wakeup optimization that could queue a task on the wrong CPU, triggering an early-boot warning on large machines. The commit c6e7bd7afaeb implements a fix by en...
PT-2025-26100
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, which could cause a kernel hang when using the hinic device as a bond slave device and reading device stats of the master bond...
CVE-2022-36676
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /categories/viewcategory.php...
CVE-2022-36678
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletecategory...
CVE-2022-36675
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/manageschedule.php...
CVE-2022-36674
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/viewschedule.php...
CVE-2022-36681
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deleteaccount...
CVE-2022-36682
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletestudent...
CVE-2022-36683
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletepayment...