Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004149)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004149 advisory. A memory leak in the fastrpcdmabufattach function in drivers/misc/fastrpc.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000415)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000415 advisory. A memory leak in the dwc3pciprobe function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service memory...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000283)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000283 advisory. A memory leak in the ccprunshacmd function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service memory...

EUVD-2019-9150

Malware in sbrugna...

EUVD-2019-8699

Malware in sbrugna...

EUVD-2022-1157

Malicious code in bioql PyPI...

PT-2024-27371 · Woocommerce · Laybuy Payment Extension For Woocommerce

Name of the Vulnerable Software and Affected Versions: Laybuy Payment Extension for WooCommerce versions through 5.3.9 Description: The issue is related to a Missing Authorization vulnerability, allowing the exploitation of incorrectly configured access control security levels. Recommendations: F...

Information disclosure

CrateDB is a distributed SQL database that makes it simple to store and analyze massive amounts of data in real-time. There is a COPY FROM function in the CrateDB database that is used to import file data into database tables. This function has a flaw, and authenticated attackers can use the COPY...

SUSE CVE-2011-4885

PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service CPU consumption by sending many crafted parameters...

PT-2022-19793 · Unknown · Limesurvey

Name of the Vulnerable Software and Affected Versions: LimeSurvey versions 5.3.9 and below Description: A cross-site scripting XSS issue in the uploadConfirm.php file allows attackers to execute arbitrary web scripts or HTML via a crafted plugin. This can be exploited by attackers to execute...

PT-2022-13266 · Snipe-It · Snipe-It

Name of the Vulnerable Software and Affected Versions: snipe/snipe-it versions prior to 5.3.9 snipe/snipe-it versions prior to 5.3.10 Description: The issue concerns exposure of sensitive information to an unauthorized actor. Recommendations: For versions prior to 5.3.9, update to version 5.3.9 o...

DEBIAN-CVE-2019-19061

A memory leak in the adisupdatescanmodeburst function in drivers/iio/imu/adisbuffer.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory consumption, aka CID-9c0530e898f3...

Linux kernel memory leak vulnerability (CNVD-2019-40153)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A memory leak vulnerability exists in the ccprunshacmd function in drivers/crypto/ccp/ccp-ops.c in Linux kernel 5.3.9...

Linux kernel memory leak vulnerability (CNVD-2019-40152)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A memory leak vulnerability exists in the af9005identifystate function in drivers/media/usb/dvb-usb/af9005.c in Linux...

PT-2019-5267 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.3.9 Description: The issue is related to a memory leak in the crypto reportstat function, which can lead to a denial of service due to memory consumption. This can be triggered by causing copy from user...

PT-2019-4230 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.3.9 Description: The issue is related to a memory leak in the adis update scan mode function, located in drivers/iio/imu/adis buffer.c. This memory leak can be exploited by attackers to cause a denial of servi...

PT-2019-7028 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.3.9 Description: The issue concerns a Cross-Site Scripting XSS flaw in the search form field of the events-manager plugin for WordPress. Recommendations: For versions prior to 5.3.9, update to version...

PHP 'openssl_encrypt()' Function Information Disclosure Vulnerability - Windows

PHP is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

PHP 5.x < 5.3.9 Security Bypass Vulnerability

PHP is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ifdescription...

PHP 5.3.9 'php_register_variable_ex()' Code Execution (intrusive check)

The remote host is running a version of PHP that is affected by an arbitrary code execution vulnerability. Specifically, the fix for the hash collision denial of service vulnerability CVE-2011-4885 introduces a remote code execution vulnerability in the function 'phpregistervariableex' in the fil...