|
851
|
6.1 |
MEDIUM
Network
|
ruoyi
|
ruoyi
|
A vulnerability was found in y_project RuoYi up to 4.7.9. It has been declared as problematic. Affected by this vulnerability is the function SysUserServiceImpl of the file ruoyi-system/src/main/java…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9048
|
2024-09-30 22:00 |
2024-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
852
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
s390/dasd: fix error checks in dasd_copy_pair_store()
dasd_add_busid() can return an error via ERR_PTR() if an allocation
fails. …
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-42320
|
2024-09-30 21:54 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
853
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: TAS2781: Fix tasdev_load_calibrated_data()
This function has a reversed if statement so it's either a no-op or it
leads to …
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-42278
|
2024-09-30 21:53 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
854
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/qxl: Add check for drm_cvt_mode
Add check for the return value of drm_cvt_mode() and return the error if
it fails in order to…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43829
|
2024-09-30 21:51 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
855
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Add null check before access structs
In enable_phantom_plane, we should better check null pointer before
accessi…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-43827
|
2024-09-30 21:51 |
2024-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
856
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Skip wbscl_set_scaler_filter if filter is null
Callers can pass null in filter (i.e. from returned from the func…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46714
|
2024-09-30 21:50 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
857
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Ensure array index tg_inst won't be -1
[WHY & HOW]
tg_inst will be a negative if timing_generator_count equals 0…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2024-46730
|
2024-09-30 21:49 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
858
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Add otg_master NULL check within resource_log_pipe_topology_update
[Why]
Coverity reports NULL_RETURN warning.
…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46727
|
2024-09-30 21:49 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
859
|
6.5 |
MEDIUM
Network
|
alf
|
alf
|
alf.io is an open source ticket reservation system for conferences, trade shows, workshops, and meetups. Prior to version 2.0-M5, the preloaded data as json is not escaped correctly, the administrato…
|
CWE-116
Improper Encoding or Escaping of Output
|
CVE-2024-45299
|
2024-09-30 21:48 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
860
|
7.2 |
HIGH
Network
-
|
-
|
The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via RSVP name field in all versions up to, and including, 6.6.3 due to insufficient input sanitization and ou…
|
CWE-79
Cross-site Scripting
|
CVE-2024-6931
|
2024-09-30 21:46 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
