container-tools:rhel8 security update

slirp4netns 1.2.3-1 - update to https://github.com/rootless-containers/slirp4netns/releases/tag/v1.2.3 - Related: Jira:RHEL-2110 1.2.2-1 - update to https://github.com/rootless-containers/slirp4netns/releases/tag/v1.2.2 - Related: Jira:RHEL-2110 1.2.1-1 - update to...

openSUSE: Security Advisory for runc (SUSE-SU-2023:3952-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Whaleal IceFrog is vulnerable to deserialization

Whaleal IceFrog v1.1.8 component Aviator Template Engine is vulnerable to deserialization of untrusted data. The application deserializes untrusted data without sufficiently verifying that the resulting data will be valid...

GHSA-RX62-5CW6-X29Q Whaleal IceFrog is vulnerable to deserialization

Whaleal IceFrog v1.1.8 component Aviator Template Engine is vulnerable to deserialization of untrusted data. The application deserializes untrusted data without sufficiently verifying that the resulting data will be valid...

CVE-2020-15165

Version 1.1.6-free of Chameleon Mini Live Debugger on Google Play Store may have had it's sources or permissions tampered by a malicious actor. The official maintainer of the package is recommending all users upgrade to v1.1.8 as soon as possible. For more information, review the referenced GitHu...

Design/Logic Flaw

Version 1.1.6-free of Chameleon Mini Live Debugger on Google Play Store may have had it's sources or permissions tampered by a malicious actor. The official maintainer of the package is recommending all users upgrade to v1.1.8 as soon as possible. For more information, review the referenced GitHu...

CVE-2020-15165

The CVE-2020-15165 entry concerns the Chameleon Mini Live Debugger Android package (Google Play) version 1.1.6-free, where sources or permissions may have been tampered by a malicious actor. Red Hat and OSV records cite the same vulnerability description; ENISA EUVD-2020-7239 notes malware in the...

CVE-2020-15165 Potentially tampered sources on Play Store for Chameleon Mini Live Debugger

Version 1.1.6-free of Chameleon Mini Live Debugger on Google Play Store may have had it's sources or permissions tampered by a malicious actor. The official maintainer of the package is recommending all users upgrade to v1.1.8 as soon as possible. For more information, review the referenced GitHu...

CVE-2019-1010005

HexoEditor v1.1.8-beta is affected by: XSS to code execution...

Code injection

HexoEditor v1.1.8-beta is affected by: XSS to code execution...

CVE-2019-1010005

HexoEditor v1.1.8-beta is affected by: XSS to code execution...

CVE-2019-1010005

CVE-2019-1010005 affects HexoEditor v1.1.8-beta. The connected sources describe a cross-site scripting vulnerability that can lead to client-side code execution within the HexoEditor web application, arising from a lack of proper validation of client-side data by the web app. Exploitation details...