Aggregator

Linux Kernel 6.17 Revolutionizes CPU Security with “Attack Vector Controls” from AMD

Penetration Testing Tools - Metepreter.org
2 weeks 2 days ago

Linux kernel version 6.17 introduces a new processor vulnerability management system—Attack Vector Controls—engineered by AMD’s David Kaplan. This enhancement aims to streamline the configuration of CPU vulnerability mitigations for system administrators and advanced Linux...

The post Linux Kernel 6.17 Revolutionizes CPU Security with “Attack Vector Controls” from AMD appeared first on Penetration Testing Tools.

ddos

CVE-2024-12695

CVE Trends
2 weeks 2 days ago
Currently trending CVE - Hype Score: 7 - Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVE-2025-40683 | Human Resource Management System 1.0 /city.php searccity cross site scripting

Vuldb Updates
2 weeks 2 days ago
A vulnerability was found in Human Resource Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /city.php. The manipulation of the argument searccity leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-40683. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com

CVE-2025-40682 | Human Resource Management System 1.0 /controller/ccity.php city/state sql injection

Vuldb Updates
2 weeks 2 days ago
A vulnerability was found in Human Resource Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /controller/ccity.php. The manipulation of the argument city/state leads to sql injection. The identification of this vulnerability is CVE-2025-40682. The attack may be initiated remotely. There is no exploit available.
vuldb.com

CVE-2025-40684 | Human Resource Management System 1.0 /country.php searccountry cross site scripting

Vuldb Updates
2 weeks 2 days ago
A vulnerability classified as problematic has been found in Human Resource Management System 1.0. Affected is an unknown function of the file /country.php. The manipulation of the argument searccountry leads to cross site scripting. This vulnerability is traded as CVE-2025-40684. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com

CVE-2025-40685 | Human Resource Management System 1.0 /state.php searcstate cross site scripting

Vuldb Updates
2 weeks 2 days ago
A vulnerability classified as problematic was found in Human Resource Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /state.php. The manipulation of the argument searcstate leads to cross site scripting. This vulnerability is known as CVE-2025-40685. The attack can be launched remotely. There is no exploit available.
vuldb.com

CVE-2025-50069 | Oracle Database Server up to 19.27/21.18 improper authorization (EUVD-2025-21509 / Nessus ID 242296)

Vuldb Updates
2 weeks 2 days ago
A vulnerability was found in Oracle Database Server up to 19.27/21.18. It has been classified as critical. Affected is an unknown function. The manipulation leads to improper authorization. This vulnerability is traded as CVE-2025-50069. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2021-36048 | Adobe XMP Toolkit SDK up to 2020.1 input validation (apsb21-65 / Nessus ID 243315)

Vuldb Updates
2 weeks 2 days ago
A vulnerability has been found in Adobe XMP Toolkit SDK up to 2020.1 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper input validation. This vulnerability is known as CVE-2021-36048. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad