16 matches found
EUVD-2025-201283
Alinto Sogo 5.12.3 is vulnerable to Cross Site Scripting XSS via the theme parameter...
CVE-2025-63499
Alinto Sogo 5.12.3 is vulnerable to Cross Site Scripting XSS via the theme parameter...
UBUNTU-CVE-2025-63499
Alinto Sogo 5.12.3 is vulnerable to Cross Site Scripting XSS via the theme parameter...
CVE-2025-63499
Alinto Sogo 5.12.3 is vulnerable to Cross Site Scripting XSS via the theme parameter...
CVE-2025-63498
alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting XSS via the "userName" parameter...
SOGo 安全漏洞
SOGo is a very fast and extensible modern collaboration suite from Alinto Open Source. It provides calendaring, address book management and a full-featured webmail client as well as resource sharing and permission handling. A security vulnerability exists in SOGo version 5.12.3, which stems from...
CVE-2025-63498
alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting XSS via the "userName" parameter...
PT-2025-47963
Name of the Vulnerable Software and Affected Versions alinto SOGo version 5.12.3 Description alinto SOGo version 5.12.3 is susceptible to Cross Site Scripting XSS attacks. The issue is related to the userName parameter. Exploitation of this issue could allow an attacker to inject malicious script...
EUVD-2022-34842
Malicious code in bioql PyPI...
CVE-2022-2594
The Advanced Custom Fields WordPress plugin before 5.12.3, Advanced Custom Fields Pro WordPress plugin before 5.12.3 allows unauthenticated users to upload files allowed in a default WP configuration so PHP is not possible if there is a frontend form available. This vulnerability was introduced i...
WordPress plugin Advanced Custom Fields 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
UVI-2021-1000078 scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand()
scsi: qla2xxx: Fix crash in qla2xxxmqueuecommand This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...
GSD-2021-1000072 openvswitch: fix stack OOB read while fragmenting IPv4 packets
openvswitch: fix stack OOB read while fragmenting IPv4 packets This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...
UVI-2021-1000066 tpm: efi: Use local variable for calculating final log size
tpm: efi: Use local variable for calculating final log size This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...
GSD-2021-1000059 media: staging/intel-ipu3: Fix memory leak in imu_fmt
media: staging/intel-ipu3: Fix memory leak in imufmt This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...
GSD-2021-1000078 scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand()
scsi: qla2xxx: Fix crash in qla2xxxmqueuecommand This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...