Linux Distros Unpatched Vulnerability : CVE-2023-41259

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Best Practical Request Tracker RT before 4.4.7 and 5.x before 5.0.5 allows Information Disclosure via fake or spoofed RT email headers in an email message or a...

Debian dsa-5986 : node-cipher-base - security update

The remote Debian 12 / 13 host has a package installed that is affected by a vulnerability as referenced in the dsa-5986 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5986-1 [email protected] https://www.debian.org/security/...

WordPress Goal Tracker for Patreon plugin <= 0.4.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Vinit Lakra Patchstack Alliance in WordPress Plugin Goal Tracker for Patreon versions = 0.4.6...

Linux Distros Unpatched Vulnerability : CVE-2017-5361

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Request Tracker RT 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2 does not use a constant-time comparison algorithm for secrets, which makes it...

Linux Distros Unpatched Vulnerability : CVE-2016-6127

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in Request Tracker RT 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2, when the AlwaysDownloadAttachments...

Linux Distros Unpatched Vulnerability : CVE-2019-14524

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Schism Tracker through 20190722. There is a heap-based buffer overflow via a large number of song patterns in fmtmtmloadsong in...

Linux Distros Unpatched Vulnerability : CVE-2017-5944

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dashboard subscription interface in Request Tracker RT 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2 might allow remote authenticated users...

Linux Distros Unpatched Vulnerability : CVE-2017-5943

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Request Tracker RT 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2 allows remote attackers to obtain sensitive information about cross-site reque...

Debian dla-4281 : iperf3 - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4281 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4281-1 [email protected]...

Malicious code in react-event-tracker1 (npm)

The package communicates with a domain associated with malicious activity...

Malicious code in react-event-tracker-dpdpoc (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-41404 Malicious code in react-event-tracker-dpdpoc (npm)

The package communicates with a domain associated with malicious activity...

CVE-2025-9134

A security vulnerability has been detected in AfterShip Package Tracker App up to 5.24.1 on Android. The affected element is an unknown function of the file AndroidManifest.xml of the component com.aftership.AfterShip. The manipulation leads to improper export of android application components. T...

CVE-2025-9134

CVE-2025-9134 affects AfterShip Package Tracker App (Android) up to version 5.24.1, where an unknown function in the AndroidManifest.xml of the com.aftership.AfterShip component allows improper export of Android app components. The issue enables local attack execution; public exploit information ...

AfterShip Package Tracker App 安全漏洞

AfterShip Package Tracker App is a courier tracking app by AfterShip Singapore. A security vulnerability exists in AfterShip Package Tracker App version 5.24.1 and earlier, which stems from an improperly exported AndroidManifest.xml component and could lead to a local attack...

PT-2025-33718 · Aftership · Aftership Package Tracker App

Name of the Vulnerable Software and Affected Versions: AfterShip Package Tracker App versions through 5.24.1 Description: A security vulnerability has been detected in AfterShip Package Tracker App on Android. The affected element is an unknown function within the AndroidManifest.xml file of the...

Ubuntu: Security Advisory (USN-7692-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Distros Unpatched Vulnerability : CVE-2025-31500

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Best Practical RT Request Tracker 5.0 through 5.0.7 allows XSS via JavaScript injection in an Asset name. CVE-2025-31500 Note that Nessus relies on the presence...

Linux Distros Unpatched Vulnerability : CVE-2019-14523

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a large plen in fmtoktloadsong in the Amiga Oktalyzer parser in...

Linux Distros Unpatched Vulnerability : CVE-2022-25802

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Best Practical Request Tracker RT before 4.4.6 and 5.x before 5.0.3 allows XSS via a crafted content type for an attachment. CVE-2022-25802 Note that Nessus...