PT-2026-07: Local Privilege Escalation Vulnerability in the Linux Kernel (Copy Fail)

This security advisory provides information regarding a Linux kernel vulnerability, CVE-2026-31431 , informally known as Copy Fail. This vulnerability allows for local privilege escalation to the superuser root level and affects the Linux kernel module: algifaead. Vulnerability status : PT NGFW i...

EUVD-2019-4897

Malware in sbrugna...

WBCE 1.6.0 SQL Injection

Exploit Title: |Unauthenticated SQL injection in WBCE 1.6.0 Date: 15.11.2023 Exploit Author: young pope Vendor Homepage: https://github.com/WBCE/WBCECMS Software Link: https://github.com/WBCE/WBCECMS/archive/refs/tags/1.6.0.zip Version: 1.6.0 Tested on: Kali linux CVE : CVE-2023-39796 There is an...

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides a variety of payment methods, short message alerts and product image scaling and other features. PrestaShop suffers from a SQL injection vulnerability that stems from the module havi...

PT-2023-6405 · Yifan · Yifan Yf325

Name of the Vulnerable Software and Affected Versions: Yifan YF325 version 1.0 20221108 Description: A stack-based buffer overflow vulnerability exists in the httpd gwcfg.cgi get functionality. This issue can be triggered by a specially crafted network packet, potentially leading to command...

PT-2023-24583 · Liferay · Plugin For Oauth 2.0 +2

Name of the Vulnerable Software and Affected Versions: Liferay Portal versions 7.4.3.41 through 7.4.3.52 Liferay DXP 7.4 update 41 through 52 Description: The issue concerns multiple cross-site scripting XSS vulnerabilities in the Plugin for OAuth 2.0 module's OAuth2ProviderApplicationRedirect...

traefik -- Use of vulnerable Go module x/net/http2

The Go project reports: A request smuggling attack is possible when using MaxBytesHandler. When using MaxBytesHandler, the body of an HTTP request is not fully consumed. When the server attempts to read HTTP2 frames from the connection, it will instead be reading the body of the HTTP request, whi...

PT-2022-6763 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: A critical issue has been found in the Linux Kernel, affecting the function tst timer of the file drivers/atm/idt77252.c of the component IPsec. The manipulation leads to use after fre...

Simplephpscripts Simple CMS v2.1 - SQL Injection

Document Title: =============== Simplephpscripts Simple CMS v2.1 - SQL Injection References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2303 Release Date: ============= 2021-10-18 Vulnerability Laboratory ID VL-ID: ==================================== 2303...

Open Redirect in medialize/uri.js

✍️ Description urijs mishandles certain uses of backslash such as https:/\ and interprets the URI as a relative path. Browsers accept backslashes after the protocol, and treat it as a normal slash, while url-parse sees it as a relative path. 🕵️‍♂️ Proof of Concept 1. Create the following PoC file:...

httpd: mod_http2 concurrent pool usage

A flaw was found in Apache httpd in versions 2.4.20 to 2.4.43. Logging using the wrong pool by modhttp2 at debug/trace log level may lead to potential crashes and denial of service. The highest threat from this vulnerability is to system availability...

Easy File Sharing WS v7.2 - (UserId) Buffer Overflow

Document Title: =============== Easy File Sharing WS v7.2 - UserId Buffer Overflow References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2149 Release Date: ============= 2018-10-02 Vulnerability Laboratory ID VL-ID: ==================================== 2149...

Shopify Cross-Site Scripting Vulnerability

Shopify is a Canadian business company headquartered in Ottawa, Ontario, Canada, which develops computerized software point-of-sale systems for online stores and retailing. Shopify suffers from a cross-site scripting vulnerability that allows remote attackers to inject their own scripting code in...

TinyWebGallery v2.4 (TWGE) - Persistent XSS Vulnerability

Document Title: =============== TinyWebGallery v2.4 TWGE - Persistent XSS Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=1997 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16635...

U.S. Dept Of Defense: 2 vulnerabilities of arbitrary code in ████████ - CVE-2017-5929

Summary: GitHub repo: https://github.com/████████ QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components. High Severity Arbitrary Code Execution Vulnerable module: ch.qos.logback:logback-core Introduced through:...

Silverstripe Theme Newedge - Cross Site Web Vulnerability

A client-side cross site scripting web vulnerability has been discovered in the official Theme Newedge for Silverstripe content management system. Technical Details & Description: ================================ A client-side cross site scripting web vulnerability has been discovered in the...

eFront Learning CMS 3.6.15.6 Cross Site Scripting

Document Title: =============== eFront 3.6.15.6 CMS – Message Attachment Persistent Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1765 Release Date: ============= 2016-02-24 Vulnerability Laboratory ID VL-ID:...

Investors Application Cross Site Scripting

Document Title: =============== Investors Application - Client Side Cross Site Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1540 Facebook Security ID: 246414938 Release Date: ============= 2016-02-12 Vulnerability Laboratory ID VL-ID:...

File Manager PRO v1.3 iOS - Multiple Web Vulnerabilities

Document Title: =============== File Manager PRO v1.3 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1704 Release Date: ============= 2016-02-03 Vulnerability Laboratory ID VL-ID: ====================================...

Port Scan v2.0 iOS - Command Inject Vulnerability

Document Title: =============== Port Scan v2.0 iOS - Command Inject Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1619 Release Date: ============= 2015-11-02 Vulnerability Laboratory ID VL-ID: ==================================== 1619...