GHSA-FG29-37PX-C7WM RuoYi vulnerable to SQL injection vulnerability

RuoYi up to v4.6 was discovered to contain a SQL injection vulnerability via /system/dept/edit...

RuoYi vulnerable to SQL injection vulnerability

RuoYi up to v4.6 was discovered to contain a SQL injection vulnerability via /system/dept/edit...

CVE-2023-49371

RuoYi up to v4.6 was discovered to contain a SQL injection vulnerability via /system/dept/edit...

CVE-2023-49371

RuoYi up to v4.6 was discovered to contain a SQL injection vulnerability via /system/dept/edit...

Sql injection

RuoYi up to v4.6 was discovered to contain a SQL injection vulnerability via /system/dept/edit...

CVE-2023-49371

RuoYi up to v4.6 was discovered to contain a SQL injection vulnerability via /system/dept/edit...

CVE-2023-30185

CRMEB v4.4 to v4.6 was discovered to contain an arbitrary file upload vulnerability via the component \attachment\SystemAttachmentServices.php...

CVE-2023-30185

CVE-2023-30185 affects CRMEB versions 4.4–4.6 and involves an arbitrary file upload vulnerability via the attachment/SystemAttachmentServices.php component. The issue is documented with a critical CVSS v3.1 score (9.8) affecting confidentiality, integrity, and availability. The connected sources ...

GSD-2023-1001602 orangefs: Fix sysfs not cleanup when dev init failed

orangefs: Fix sysfs not cleanup when dev init failed This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.337 by commit...

GSD-2023-1001532 PCI/sysfs: Fix double free in error path

PCI/sysfs: Fix double free in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.337 by commit...

GSD-2023-1000911 PCI/sysfs: Fix double free in error path

PCI/sysfs: Fix double free in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.87 by commit...

GSD-2023-1000453 PCI/sysfs: Fix double free in error path

PCI/sysfs: Fix double free in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit...

GSD-2022-1007621 kcm: annotate data-races around kcm->rx_wait

kcm: annotate data-races around kcm-rxwait This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.332 by commit...

GSD-2022-1007345 kcm: annotate data-races around kcm->rx_psock

kcm: annotate data-races around kcm-rxpsock This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.223 by commit...

GSD-2022-1006947 kcm: annotate data-races around kcm->rx_psock

kcm: annotate data-races around kcm-rxpsock This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.77 by commit...

GSD-2022-1006627 kcm: annotate data-races around kcm->rx_wait

kcm: annotate data-races around kcm-rxwait This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.7 by commit...

GSD-2022-1005225 ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173_rt5650_dev_probe

ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173rt5650devprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

GSD-2022-1004761 tty: goldfish: Fix free_irq() on remove

tty: goldfish: Fix freeirq on remove This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.200 by commit f7183c76d500324b8b5bd0af5e663cfa57b7b836...

GSD-2022-1004503 tty: goldfish: Fix free_irq() on remove

tty: goldfish: Fix freeirq on remove This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.49 by commit fb15e79cacddfbc62264e6e807bde50ad688e988...

GSD-2021-1001584 bpf: Fix integer overflow in prealloc_elems_and_freelist()

bpf: Fix integer overflow in preallocelemsandfreelist This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.153 by commit...