Avantra 安全漏洞

Avantra is a SAP software developed by the Avantra company. Versions of Avantra prior to 25.3.0 contained security vulnerabilities. These vulnerabilities stemmed from the use of default passwords, which could allow attempts using common or default usernames and passwords...

plunk 注入漏洞

Plunk is an open-source email sending and management platform developed by Plunk. Versions of Plunk prior to 0.8.0 had a vulnerability related to injection attacks. This vulnerability stemmed from the CRLF header injection in the SESService.ts file, which could allow authenticated API users to...

PT-2024-28636 · Unknown · Electron-Updater

Name of the Vulnerable Software and Affected Versions: electron-updater versions prior to 6.3.0-alpha.6 Description: The issue concerns the signature validation routine for Electron applications on Windows, implemented in the file...

PT-2023-3436 · Sealos · Sealos

Name of the Vulnerable Software and Affected Versions: Sealos versions prior to 4.2.1-rc4 Description: The issue is related to an improper configuration of role-based access control RBAC permissions in Sealos, an open-source cloud operating system distribution based on the Kubernetes kernel. This...

AZL-6464 CVE-2020-27779 affecting package grub2 for versions less than 2.06~rc1-7

A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub's memory layout. The highest...