Category: Advisories

Posted by Andrey Stoykov on Mar 24 # Exploit Title: Stored XSS via Send Message Functionality - dolphin.prov7.4.2 # Date: 03/2025 # Exploit Author: Andrey...

It was discovered that SmartDNS did not correctly align certain objects in memory, leading to undefined behaviour. An attacker could possibly use this issue to...

Multiple security issues were found in Rack, an interface for developing web applications in Ruby, which could result in log injection or information disclosure. https://security-tracker.debian.org/tracker/DSA-5886-1...

FEDORA-2025-12f2e3e40b Packages in this update: dokuwiki-20240206b-1.fc42 php-kissifrot-php-ixr-1.8.4-1.fc42 php-phpseclib3-3.0.43-1.fc42 Update description: Update DokuWiki to release 2024-02-06b "Kaos", update dependencies accordingly Read More

FEDORA-2025-0ec100da82 Packages in this update: dokuwiki-20240206b-1.fc43 php-kissifrot-php-ixr-1.8.4-1.fc43 php-phpseclib3-3.0.43-1.fc43 Update description: Update DokuWiki to release 2024-02-06b "Kaos", update dependencies accordingly Read More

FEDORA-2025-d75bc3d211 Packages in this update: exim-4.98.1-1.fc42 Update description: This is new version fixing possible remote SQL injection and FTBFS with gcc-15. Read More

It was discovered that readelf from elfutils could be made to read out of bounds. If a user or automated system were tricked into running...

USN-7348-1 fixed vulnerabilities in Python. The update introduced a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was...

Nhật Thái Đỗ discovered that Rack incorrectly handled certain usernames. A remote attacker could possibly use this issue to perform CRLF injection. (CVE-2025-25184) Phạm Quang...

It was discovered that zvbi incorrectly handled memory when processing user input. An attacker could possibly use this issue to cause a denial of service...