CVE-2026-54196

Subscriber Privilege Escalation in JetFormBuilder = 3.6.1 versions...

Juju 安全漏洞

Juju is a canonical Juju open-source application orchestration engine. Vulnerabilities existed in versions of Juju between 2.9 and 2.9.56, as well as in versions between 3.6 and 3.6.19. These vulnerabilities stemmed from the ability for any authenticated user, machine, or controller to modify the...

OpenSSL security vulnerabilities

OpenSSL is an open-source encryption library developed by the OpenSSL team that enables secure implementation of Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. This product supports various encryption algorithms, including symmetric ciphers, hash algorithms, and secure...

OpenSSL security vulnerabilities

OpenSSL is an open-source encryption library developed by the OpenSSL team that enables secure implementation of Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. This product supports various encryption algorithms, including symmetric ciphers, hash algorithms, and secure...

Astra Linux – Vulnerability in OpenSSL

Issue summary: If an application using the SSLCIPHERfind function in a QUIC protocol client or server receives an unknown cipher suite from the peer, a NULL pointer dereference occurs. Impact summary: A NULL pointer dereference leads to abnormal termination of the running process, causing a Denia...

PT-2024-30860 · Unknown · Sonalsinha21 Posterity

Name of the Vulnerable Software and Affected Versions: sonalsinha21 Posterity versions 3.6 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For...

WordPress OpenID plugin <= 3.6.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin OpenID versions = 3.6.1...

Wireshark 缓冲区错误漏洞

Wireshark formerly Ethereal is a set of network packet analysis software from the Wireshark team. Wireshark versions 3.6.0 and 3.4.0 - 3.4.10 contain an injection vulnerability that stems from a crash in the Sysdig event parser. An attacker could exploit this vulnerability to cause a denial of...

com.beirtipol:jfixtools-reporting (=1.0-BETA), com.beirtipol:jfixtools-ui-vaadin (=1.0-BETA) +109 more potentially affected by CVE-2021-31412 via com.vaadin:flow-server (>=3.0.0 <=6.0.1)

com.vaadin:flow-server MAVEN version =3.0.0, =1.1.6, =15.0.0, =15.0.0, =0.17.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =5.0.0, =6.0.1 and more Source cves: CVE-2021-31412 Source advisory: OSV:GHSA-FR26-QJC8-MVJX...

NetHack Buffer Overflow Vulnerability

NetHack is a role-playing single-player game. A buffer overflow vulnerability exists in NetHack version 3.6.x prior to 3.6.4. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries, resulting in incorrect read and wri...

Unspecified Vulnerability in Moodle (CNVD-2019-35814)

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. A security vulnerability exists in Moodle versions 3.6 to 3.6.2 and 3.5 to 3.5.4, which can be exploited by attackers to gain...

Unspecified Vulnerability in Red Hat Enterprise Virtualization Manager

Red Hat Enterprise Virtualization RHEV Manager is a core component of Red Hat's RHEV Enterprise Virtualization Platform. The component contains KVM tools that provide virtualization management capabilities. A security vulnerability exists in Red Hat Enterprise Virtualization Manager 3.6 and earli...