71 matches found
MINI-C467-V69M-689H
Bulletin has no description...
MINI-GFFJ-V69X-3MWH
Bulletin has no description...
Security update for the Linux Kernel (Live Patch 69 for SUSE Linux Enterprise 12 SP5)
This update for the SUSE Linux Enterprise kernel 4.12.14-122.261 fixes various security issues The following security issues were fixed: CVE-2025-38375: virtio-net: ensure the received length does not exceed allocated size bsc1258073. CVE-2026-23004: dst: fix races in rt6uncachedlistdel and...
MINI-WGGC-FPWM-V62C
Bulletin has no description...
EUVD-2026-19450
Workbench is a suite of tools for administrators and developers to interact with Salesforce.com organizations via the Force.com APIs. Prior to 65.0.0, Workbench contains remote code execution vulnerability in the timezone conversion flow, which processes attacker-controlled cookie values in an...
PT-2026-30669
Workbench is a suite of tools for administrators and developers to interact with Salesforce.com organizations via the Force.com APIs. Prior to 65.0.0, Workbench contains a reflected cross-site scripting vulnerability via the footerScripts parameter, which does not sanitize user-supplied input...
CVE-2026-25579
Navidrome is an open source web-based music collection server and streamer. Prior to version 0.60.0, authenticated users can crash the Navidrome server by supplying an excessively large size parameter to /rest/getCoverArt or to a shared-image URL /share/img/. When processing such requests, the...
SUSE CVE-2025-68616
WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side request forgery SSRF protection bypass exists in WeasyPrint's defaulturlfetcher. The vulnerability allows attackers to access internal network resources such as localhost services or cloud metadata...
WeasyPrint code-related vulnerabilities
WeasyPrint is an intelligent solution developed by Kozea. It helps web developers create PDF files. Versions of WeasyPrint prior to 68.0 contained code vulnerabilities. These vulnerabilities stemmed from a protection mechanism in the defaulturlfetcher that allowed server-side request forgery...
PT-2026-3446
Name of the Vulnerable Software and Affected Versions WeasyPrint versions prior to 68.0 Description WeasyPrint is a tool used by web developers to generate PDF documents. A server-side request forgery SSRF protection bypass exists in WeasyPrint’s default url fetcher for versions prior to 68.0. Th...
CVE-2017-18457
cPanel before 62.0.17 allows arbitrary file-read operations via WHM /styled/ URLs SEC-218...
AB Document Reader: PDF, DOC, PPT 安全漏洞
AB Document Reader: PDF, DOC, PPT is a document reader from AB. A security vulnerability exists in AB Document Reader: PDF, DOC, PPT version 65.0, which stems from a lack of security checks during the file import process and can lead to directory traversal...
Linux Distros Unpatched Vulnerability : CVE-2017-5108
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Type confusion in PDFium in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify...
CVE-2016-10773
cPanel before 60.0.25 allows format-string injection in exception-message handling SEC-171...
WordPress plugin WPGYM SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...
UBUNTU-CVE-2024-28184
WeasyPrint helps web developers to create PDF documents. Since version 61.0, there's a vulnerability which allows attaching content of arbitrary files and URLs to a generated PDF document, even if urlfetcher is configured to prevent access to files and URLs. This vulnerability has been patched in...
SUSE CVE-2018-6121
Insufficient validation of input in Blink in Google Chrome prior to 66.0.3359.170 allowed a remote attacker to perform privilege escalation via a crafted HTML page...
SUSE CVE-2018-12407
A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content, when working with the VertexBuffer11 module. This results in a potentially exploitable crash. This vulnerability affects Firefox 64...
CVE-2022-40265
Improper Input Validation vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series RJ71EN71 Firmware version "65" and prior and Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120ENCPU Network Part Firmware version "65" and prior allows a remote unauthenticated attacker...
NETSAS Enigma NMS Cross-Site Scripting Vulnerability
NETSAS Enigma NMS is a suite of network management and monitoring tools from NETSAS Australia. A cross-site scripting vulnerability exists in NETSAS Enigma NMS version 65.0.0 and earlier. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An...