Aggregator

CVE-2008-6678 | QuickerSite 1.8.5 default.asp sNickName sql injection (EDB-5733 / XFDB-42866)

Vuldb Updates
8 months 3 weeks ago
A vulnerability was found in QuickerSite 1.8.5. It has been classified as critical. Affected by this vulnerability is an unknown functionality of the file default.asp. Performing manipulation of the argument sNickName results in sql injection. This vulnerability is cataloged as CVE-2008-6678. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2008-4139 | OpenSolution Quick.Cms.Lite 2.1 admin.php cross site scripting (EDB-32387 / XFDB-45194)

Vuldb Updates
8 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in OpenSolution Quick.Cms.Lite 2.1. Affected by this vulnerability is an unknown functionality of the file admin.php. This manipulation causes cross site scripting. This vulnerability appears as CVE-2008-4139. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com

Qilin

Dark Feed IO
8 months 3 weeks ago

You must login to view this content

cohenido

Justified Investments in Cloud Security Technologies

Security Boulevard
8 months 3 weeks ago

What Makes Non-Human Identities Essential for Cloud Security? How do you safeguard your digital assets when every machine identity in your organization is like a tourist visiting a foreign land? Machine identities, often termed Non-Human Identities (NHIs), act as the passport through which automated systems interact with clouds. Managing these NHIs and their encrypted “secrets” […]

The post Justified Investments in Cloud Security Technologies appeared first on Entro.

The post Justified Investments in Cloud Security Technologies appeared first on Security Boulevard.

Alison Mack

CVE-2025-20314 | Cisco IOS XE up to 17.17.1 undefined values (cisco-sa-secboot-UqFD8AvC / EUVD-2025-31020)

VulDB Recent Entries
8 months 3 weeks ago
A vulnerability classified as critical was found in Cisco IOS XE. Affected by this issue is some unknown functionality. Such manipulation leads to improper handling of undefined values. This vulnerability is documented as CVE-2025-20314. The attack needs to be performed locally. There is not any exploit available. Upgrading the affected component is advised.
vuldb.com

Chinese Hackers Steal Data from U.S. Legal, Tech Firms for More Than a Year

Security Boulevard
8 months 3 weeks ago

Google threat researchers have found that the China-nexus threat group UNC5221 has been hacking into the networks and systems of U.S. legal firms and tech companies, at times spending more than a year inside compromised appliances to steal information and IP, spy on the organizations, and develop new zero-days.

The post Chinese Hackers Steal Data from U.S. Legal, Tech Firms for More Than a Year appeared first on Security Boulevard.

Jeffrey Burt

CVE-2024-36002 | Linux Kernel up to 6.8.8 dpll_pin_on_pin_register denial of service (f3e1cf62d182/38d7b94e81d0)

Vuldb Updates
8 months 3 weeks ago
A vulnerability classified as critical was found in Linux Kernel up to 6.8.8. Affected by this issue is the function dpll_pin_on_pin_register. Such manipulation leads to denial of service. This vulnerability is traded as CVE-2024-36002. Access to the local network is required for this attack to succeed. There is no exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2024-35993 | Linux Kernel up to 6.6.29/6.8.8 HugeTLB Page folio_test_hugetlb memory corruption (2431b5f2650d/9fdcc5b6359d/d99e3140a4d3)

Vuldb Updates
8 months 3 weeks ago
A vulnerability identified as critical has been detected in Linux Kernel up to 6.6.29/6.8.8. Affected is the function folio_test_hugetlb of the component HugeTLB Page Handler. The manipulation leads to memory corruption. This vulnerability is listed as CVE-2024-35993. The attack must be carried out from within the local network. There is no available exploit. You should upgrade the affected component.
vuldb.com

CVE-2024-35951 | Linux Kernel up to 6.6.27/6.8.6 panfrost panfrost_mmu_map_fault_addr allocation of resources (31806711e8a4/e18070c622c6/1fc9af813b25 / Nessus ID 212722)

Vuldb Updates
8 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 6.6.27/6.8.6 and classified as problematic. This affects the function panfrost_mmu_map_fault_addr of the component panfrost. Such manipulation leads to allocation of resources. This vulnerability is uniquely identified as CVE-2024-35951. The attack can only be initiated within the local network. No exploit exists. It is suggested to upgrade the affected component.
vuldb.com

CVE-2024-35942 | Linux Kernel up to 6.6.26/6.8.5 imx8mp_blk privilege escalation (9d3f959b4266/b13c0d871cd8/697624ee8ad5 / Nessus ID 210815)

Vuldb Updates
8 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.6.26/6.8.5. This impacts an unknown function of the component imx8mp_blk. The manipulation leads to privilege escalation. This vulnerability is referenced as CVE-2024-35942. The attack needs to be initiated within the local network. No exploit is available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2024-35995 | Linux Kernel up to 6.8.8 ACPI denial of service (Nessus ID 209785)

Vuldb Updates
8 months 3 weeks ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.8.8. This affects an unknown function of the component ACPI. The manipulation leads to denial of service. This vulnerability is traded as CVE-2024-35995. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad