Aggregator

Submit #749263 / VDB-344876

Submit #749262 / VDB-344875

A vulnerability labeled as critical has been found in code-projects Online Application System for Admission 1.0. Affected by this vulnerability is an unknown functionality of the file enrollment/index.php of the component Login Endpoint. Executing a manipulation can lead to sql injection. This vulnerability is tracked as CVE-2026-2172. The attack can be launched remotely. Moreover, an exploit is present.

Submit #749260 / VDB-230568

Submit #749255 / VDB-344874

Submit #749253 / VDB-344873

A vulnerability identified as critical has been detected in code-projects Online Student Management System 1.0. Affected is an unknown function of the file accounts.php of the component Login. Performing a manipulation of the argument username/password results in sql injection. This vulnerability is identified as CVE-2026-2171. The attack can be initiated remotely. Additionally, an exploit exists.

Submit #749233 / VDB-344872

为复杂软件构筑一套“源于代码、高于代码”的逻辑理解体系：源于代码意味着尊重代码实现以及长期演化形成的历史现实；高于代码意味着提供超出代码物理实现结构、概念化的代码逻辑理解。

Submit #749208 / VDB-195145

A vulnerability labeled as critical has been found in Linux Kernel up to 6.6.22/6.7.10/6.8.1. The impacted element is the function edp_set_replay_allow_active. Executing a manipulation can lead to null pointer dereference. This vulnerability is registered as CVE-2024-27040. The attack requires access to the local network. No exploit is available. The affected component should be upgraded.

A vulnerability marked as critical has been reported in Linux Kernel up to 6.6.22/6.7.10/6.8.1. This affects the function amdgpu_dm_fini. The manipulation leads to null pointer dereference. This vulnerability is documented as CVE-2024-27041. The attack requires being on the local network. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability described as problematic has been identified in Linux Kernel up to 6.6.22/6.7.10/6.8.1. This impacts the function amdgpu_discovery_reg_base_init. The manipulation results in out-of-bounds read. This vulnerability is reported as CVE-2024-27042. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is recommended.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.15.152/6.1.82/6.6.22/6.7.10/6.8.1. This affects the function devm_kfree of the component hi3559a. Executing a manipulation can lead to excessive iteration. This vulnerability is handled as CVE-2024-27039. The attack can only be done within the local network. There is not any exploit available. You should upgrade the affected component.

A vulnerability identified as critical has been detected in Linux Kernel up to 6.8.1. The affected element is the function clk_core_get. Performing a manipulation results in null pointer dereference. This vulnerability is cataloged as CVE-2024-27038. The attack must originate from the local network. There is no exploit available. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.152/6.1.82/6.6.22/6.7.10/6.8.1 and classified as critical. This issue affects the function kmalloc of the component zynq. The manipulation results in null pointer dereference. This vulnerability was named CVE-2024-27037. The attack needs to be approached within the local network. There is no available exploit. It is suggested to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.1.82/6.6.22/6.7.10/6.8.1. Affected by this vulnerability is an unknown functionality of the component f2fs. Such manipulation leads to memory corruption. This vulnerability is traded as CVE-2024-27035. Access to the local network is required for this attack to succeed. There is no exploit available. Upgrading the affected component is advised.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.6.22/6.7.10/6.8.1. Affected by this issue is the function cifs_extend_writeback. Performing a manipulation results in memory corruption. This vulnerability is known as CVE-2024-27036. Access to the local network is required for this attack. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.15.152/6.1.82/6.6.22/6.7.10/6.8.1. Affected is the function f2fs_write_raw_pages of the component compress. This manipulation causes memory corruption. This vulnerability appears as CVE-2024-27034. The attacker needs to be present on the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.22/6.7.10/6.8.1. It has been rated as critical. This issue affects the function f2fs_bug_on. This manipulation causes denial of service. This vulnerability is tracked as CVE-2024-27033. The attack is only possible within the local network. No exploit exists. Upgrading the affected component is advised.