Linux Distros Unpatched Vulnerability : CVE-2024-7625

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In HashiCorp Nomad and Nomad Enterprise from 0.6.1 up to 1.6.13, 1.7.10, and 1.8.2, the archive unpacking process is vulnerable to writes outside the allocation...

CVE-2022-25244

Vault Enterprise clusters using the tokenization transform feature can expose the tokenization key through the tokenization key configuration endpoint to authorized operators with read permissions on this endpoint. Fixed in Vault Enterprise 1.9.4, 1.8.9 and 1.7.10...

YOURLS Admin Panel Cross-Site Scripting Vulnerability

YOURLS is a set of PHP-based open source short link platform. A cross-site scripting vulnerability exists in YOURLS Admin Panel versions 1.5 through 1.7.10, which stems from an authenticated user having to modify a PHP plugin with a malicious load and upload it, resulting in multiple stored XSS...