Packet Storm

CrushFTP versions prior to 11.1.0 suffers from a directory traversal vulnerability.

TrojanSpy.Win64.EMOTET.A malware suffers from a code execution vulnerability.

Plantronics Hub version 3.25.1 suffers from an arbitrary file read vulnerability.

Backdoor.Win32.AsyncRat malware suffers from a code execution vulnerability.

Apache mod_proxy_cluster suffers from a cross site scripting vulnerability.

Red Hat Security Advisory 2024-2833-03 - An update to the images for Red Hat Integration - Service Registry is now available from the Red Hat Container Catalog. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Issues addressed include denial of service and memory leak vulnerabilities.

Chryp version 2.5.2 suffers from a persistent cross site scripting vulnerability.

Leafpub version 1.1.9 suffers from a persistent cross site scripting vulnerability.

Prison Management System Using PHP suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Debian Linux Security Advisory 5688-1 - It was discovered that missing input sanitising in the Atril document viewer could result in writing arbitrary files in the users home directory if a malformed epub document is opened.