6134

CVE-2025-6134 - A vulnerability was found in Projectworlds Life Insurance Management System 1.0. It has been classified as critical. This affects an unknown part of the file /insertClient.php. The manipulation of the argument client_id leads to sql injection. It is ...
4 days ago

CVE-2023-53074 - In the Linux kernel, the following vulnerability has been resolved: ...
1 month ago

23 Vulnerabilities in Black Basta's Chat Logs Exploited in Wild - GreyNoise’s internet-wide telemetry identified exploitation activity for 23 CVEs, including high-severity flaws in Palo Alto Networks PAN-OS, Cisco IOS XE, and Microsoft Exchange Server. These vulnerabilities span enterprise software, security ...
3 months ago Cybersecuritynews.com CVE-2023-36845 CVE-2023-36844 CVE-2023-22515 CVE-2022-26134 CVE-2023-6875 CVE-2021-26855 CVE-2022-41082 CVE-2024-3400 CVE-2024-1709 CVE-2021-44228 CVE-2023-20198 Black Basta

CVE-2022-49524 - In the Linux kernel, the following vulnerability has been resolved: media: pci: cx23885: Fix the error handling in cx23885_initdev() When the driver fails to call the dma_set_mask(), the driver will get the following splat: [ 55.853884] BUG: KASAN: ...
3 months ago Tenable.com

CVE-2022-49194 - In the Linux kernel, the following vulnerability has been resolved: ...
3 months ago

CVE-2024-56134 - Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection. This issue affects: Product Affected Versions LoadMaster From 7.2.55.0 to 7.2.60.1 (inclusive) From 7.2.49.0 to 7.2.54.12 (inclusive) ...
4 months ago Tenable.com

CVE-2024-43910 - In the Linux kernel, the following vulnerability has been resolved: ...
6 months ago

CVE-2024-42115 - In the Linux kernel, the following vulnerability has been resolved: ...
6 months ago

CVE-2022-48803 - In the Linux kernel, the following vulnerability has been resolved: ...
6 months ago

CVE-2024-50150 - In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmode should keep reference to parent The altmode device release refers to its parent device, but without keeping a reference to it. When registering the altmode, get a ...
7 months ago Tenable.com

CVE-2024-50104 - In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: sdm845: add missing soundwire runtime stream alloc During the migration of Soundwire runtime stream allocation from the Qualcomm Soundwire controller to SoC's soundcard ...
7 months ago Tenable.com

CVE-2024-47694 - In the Linux kernel, the following vulnerability has been resolved: IB/mlx5: Fix UMR pd cleanup on error flow of driver init The cited commit moves the pd allocation from function mlx5r_umr_resource_cleanup() to a new function mlx5r_umr_cleanup(). So ...
7 months ago Tenable.com

CVE-2024-41285 - A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via a crafted file path. ...
9 months ago

CVE-2024-6134 - The wp-cart-for-digital-products WordPress plugin before 8.5.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin ...
10 months ago

CVE-2023-48192 - An issue in TOTOlink A3700R v.9.1.2u.6134_B20201202 allows a local attacker to execute arbitrary code via the setTracerouteCfg function. ...
10 months ago

CVE-2023-6308 - A vulnerability, which was classified as critical, has been found in Xiamen Four-Faith Video Surveillance Management System 2016/2017. Affected by this issue is some unknown functionality of the component Apache Struts. The manipulation leads to ...
10 months ago

CVE-2024-38664 - In the Linux kernel, the following vulnerability has been resolved: ...
11 months ago

CVE-2022-48772 - In the Linux kernel, the following vulnerability has been resolved: ...
11 months ago

CVE-2024-26939 - In the Linux kernel, the following vulnerability has been resolved: ...
1 year ago Rocke

CVE-2024-26134 - cbor2 provides encoding and decoding for the Concise Binary Object Representation (CBOR) (RFC 8949) serialization format. Starting in version 5.5.1 and prior to version 5.6.2, an attacker can crash a service using cbor2 to parse a CBOR binary by ...
1 year ago

CVE-2020-36134 - AOM v2.0.1 was discovered to contain a segmentation violation via the component aom_dsp/x86/obmc_sad_avx2.c. ...
1 year ago

CVE-2023-6927 - A flaw was found in Keycloak. This issue may allow an attacker to steal authorization codes or tokens from clients using a wildcard in the JARM response mode "form_post.jwt" which could be used to bypass the security patch implemented to address ...
1 year ago Tenable.com Cloak

CVE-2023-6134 - A flaw was found in Keycloak that prevents certain schemes in redirects, but permits them if a wildcard is appended to the token. This issue could allow an attacker to submit a specially crafted request leading to cross-site scripting (XSS) or ...
1 year ago Tenable.com Cloak

CVE-2023-46134 - D-Tale is the combination of a Flask back-end and a React front-end to view & analyze Pandas data structures. Prior to version 3.7.0, users hosting D-Tale publicly can be vulnerable to remote code execution, allowing attackers to run malicious ...
1 year ago

CVE-2014-125081 - A vulnerability, which was classified as critical, has been found in risheesh debutsav. This issue affects some unknown processing. The manipulation leads to sql injection. The patch is named 7a8430df79277c613449262201cc792db894fc76. It is ...
1 year ago