CyberSecurityBoard
Sponsor Register Login

CVE-2024-1024

A vulnerability has been found in SourceCodester Facebook News Feed Like 1.0 and classified as problematic. This vulnerability affects unknown code of the component New Account Handler. The manipulation of the argument First Name/Last Name with the input <script>alert(1)</script> leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-252292.

Publication date: Tue, 30 Jan 2024 07:15:00 +0000


Cyber News related to CVE-2024-1024

CVE-2024-26589 - In the Linux kernel, the following vulnerability has been resolved: bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS For PTR_TO_FLOW_KEYS, check_flow_keys_access() only uses fixed off for validation. However, variable offset ptr alu is not ...
1 year ago Tenable.com
CVE-2020-1625 - The kernel memory usage represented as "temp" via 'show system virtual-memory' may constantly increase when Integrated Routing and Bridging (IRB) is configured with multiple underlay physical interfaces, and one interface flaps. This ...
3 years ago
Microsoft announces deprecation of 1024-bit RSA keys in Windows - Microsoft has announced that RSA keys shorter than 2048 bits will soon be deprecated in Windows Transport Layer Security to provide increased security. Rivest-Shamir-Adleman is an asymmetric cryptography system that uses pairs of public and private ...
1 year ago Bleepingcomputer.com
CVE-2025-21705 - In the Linux kernel, the following vulnerability has been resolved: ...
3 months ago
CVE-2021-46993 - In the Linux kernel, the following vulnerability has been resolved: ...
1 year ago
CVE-2023-53101 - In the Linux kernel, the following vulnerability has been resolved: ...
4 weeks ago
CVE-2022-49179 - In the Linux kernel, the following vulnerability has been resolved: ...
3 months ago
CVE-2025-22034 - In the Linux kernel, the following vulnerability has been resolved: ...
1 month ago
AWS LetsEncrypt Lambda: Custom TLS Provider - DZone - Trying to renew ... INFO[0000] Checking certificate for domain 'hackernoon.referrs.me' with arn 'arn:aws:acm:us-east-2:004867756392:certificate/72f872fd-e577-43f4-ae38-6833962630af' INFO[0000] Certificate status is 'ISSUED' INFO[0000] Certificate in ...
7 months ago Feeds.dzone.com
CVE-2024-47745 - In the Linux kernel, the following vulnerability has been resolved: mm: call the security_mmap_file() LSM hook in remap_file_pages() The remap_file_pages syscall handler calls do_mmap() directly, which doesn't contain the LSM security check. And if ...
7 months ago Tenable.com
CVE-2024-27405 - In the Linux kernel, the following vulnerability has been resolved: ...
1 year ago
CVE-2024-42305 - In the Linux kernel, the following vulnerability has been resolved: ...
5 months ago
CVE-2024-26944 - In the Linux kernel, the following vulnerability has been resolved: ...
1 year ago
CVE-2024-27398 - In the Linux kernel, the following vulnerability has been resolved: ...
6 months ago
CVE-2024-53177 - In the Linux kernel, the following vulnerability has been resolved: smb: prevent use-after-free due to open_cached_dir error paths If open_cached_dir() encounters an error parsing the lease from the server, the error handling may race with receiving ...
5 months ago Tenable.com
CVE-2001-1184 - wrshdsp.exe in Denicomp Winsock RSHD/NT 2.21.00 and earlier allows remote attackers to cause a denial of service (CPU consumption) via (1) in 2.20.00 and earlier, an invalid port number such as a negative number, which causes a connection attempt to ...
16 years ago
CVE-2023-22406 - A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a Denial of Service (DoS). In a segment-routing scenario with ...
2 years ago
CVE-2023-52582 - In the Linux kernel, the following vulnerability has been resolved: netfs: Only call folio_start_fscache() one time for each folio If a network filesystem using netfs implements a clamp_length() function, it can set subrequest lengths smaller than a ...
1 year ago Tenable.com
CVE-2025-21650 - In the Linux kernel, the following vulnerability has been resolved: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue The TQP BAR space is divided into two segments. TQPs 0-1023 and TQPs 1024-1279 are in different BAR space ...
4 months ago Tenable.com
CVE-2021-47441 - In the Linux kernel, the following vulnerability has been resolved: mlxsw: thermal: Fix out-of-bounds memory accesses Currently, mlxsw allows cooling states to be set above the maximum cooling state supported by the driver: # cat ...
1 year ago Tenable.com
CVE-2022-49080 - In the Linux kernel, the following vulnerability has been resolved: ...
3 months ago
CVE-2021-47393 - In the Linux kernel, the following vulnerability has been resolved: hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs Fan speed minimum can be enforced from sysfs. For example, setting current fan speed to 20 is ...
1 year ago Tenable.com
CVE-2023-52973 - In the Linux kernel, the following vulnerability has been resolved: ...
2 months ago
CVE-2021-47379 - In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: fix UAF by grabbing blkcg lock before destroying blkg pd KASAN reports a use-after-free report when doing fuzz test: [693354.104835] ...
1 year ago Tenable.com
CVE-2021-47303 - In the Linux kernel, the following vulnerability has been resolved: bpf: Track subprog poke descriptors correctly and fix use-after-free Subprograms are calling map_poke_track(), but on program release there is no hook to call map_poke_untrack(). ...
1 year ago Tenable.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)