Category Archives: Advisories

xen-4.17.4-2.fc39

Read Time:12 Second

FEDORA-2024-58c950d8d8

Packages in this update:

xen-4.17.4-2.fc39

Update description:

x86: Native Branch History Injection [XSA-456 version 3, CVE-2024-2201]
double unlock in x86 guest IRQ handling [XSA-458, CVE-2024-31143]

Read More

xen-4.18.2-4.fc40

Read Time:12 Second

FEDORA-2024-169a1cc589

Packages in this update:

xen-4.18.2-4.fc40

Update description:

double unlock in x86 guest IRQ handling [XSA-458, CVE-2024-31143]
x86: Native Branch History Injection [XSA-456 version 3, CVE-2024-2201]

Read More

[KIS-2024-06] XenForo <= 2.2.15 (Template System) Remote Code Execution Vulnerability

Read Time:15 Second

Posted by Egidio Romano on Jul 16

———————————————————————–
XenForo <= 2.2.15 (Template System) Remote Code Execution Vulnerability
———————————————————————–

[-] Software Link:

https://xenforo.com

[-] Affected Versions:

Version 2.2.15 and prior versions.

[-] Vulnerability Description:

XenForo implements a template system which gives complete control over
the layout of XenForo…

Read More

[KIS-2024-05] XenForo <= 2.2.15 (Widget::actionSave) Cross-Site Request Forgery Vulnerability

Read Time:13 Second

Posted by Egidio Romano on Jul 16

——————————————————————————-
XenForo <= 2.2.15 (Widget::actionSave) Cross-Site Request Forgery Vulnerability
——————————————————————————-

[-] Software Link:

https://xenforo.com

[-] Affected Versions:

Version 2.2.15 and prior versions.

[-] Vulnerability Description:

The XFAdminControllerWidget::actionSave() method, defined into the…

Read More