EUVD-2006-0640

Malware in sbrugna...

WordPress plugin Prevent Direct Access 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information disclosure...

CVE-2024-56830

The Net::EasyTCP package 0.15 through 0.26 for Perl uses Perl's builtin rand if no strong randomization module is present...

CVE-2024-56830

The CVE-2024-56830 issue affects the Net::EasyTCP Perl module (libnet-easytcp-perl) versions 0.15–0.26. The root cause is fallback to Perl’s insecure rand() when Crypt::Random isn’t available, risking weak randomness. Debian/OSV/NASL references confirm a fix: upgrade to Debian 11 bullseye package...

WordPress plugin Customer Email Verification for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

MediaTek Chip Security Breach

MediaTek chips are a variety of MediaTek chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from the wlan driver using insufficiently randomized values, which may result in PIN cracking...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel 5.17, which stems from a small table perturbation that causes insufficient randomization in net/ipv4/tcp.c when the Linux kernel...

Security Bulletin: A vulnerability affects the Cordova platform packaged with Rational Application Developer (CVE-2015-8320)

Summary A vulnerability has been discovered that affects the Cordova platform packaged with Rational Application Developer. Vulnerability Details CVEID: CVE-2015-8320 DESCRIPTION: Apache Cordova Android could allow a remote attacker to bypass security restrictions, caused by weak randomization of...

Security Bulletin: Vulnerability in Apache Cordova affects IBM MobileFirst Platform Foundation (CVE-2015-8320)

Summary An Apache Cordova Vulnerability for weak randomization was addressed by IBM MobileFirst Platform Foundation. Vulnerability Details CVEID: CVE-2015-8320 DESCRIPTION: Apache Cordova Android could allow a remote attacker to bypass security restrictions, caused by weak randomization of...

CVE-2014-1516

CVE-2014-1516 affects Mozilla Firefox for Android (up to version 28.0.1) where the saltProfileName in GeckoProfileDirectories.java relies on Android’s weak Math.random seeding, enabling a crafted application to bypass the profile-randomization protection. The vulnerability arises from weak random...