Search CVE reports
791 – 800 of 38366 results
Distribution is a toolkit to pack, ship, store, and deliver container content. Prior to 3.1.0, in pull-through cache mode, distribution discovers token auth endpoints by parsing WWW-Authenticate challenges returned by...
1 affected package
docker-registry
| Package | 22.04 LTS |
|---|---|
| docker-registry | Needs evaluation |
Not in release
GLPI is a free asset and IT management software package. From 10.0.0 to before 10.0.24 and 11.0.6, an authenticated user can perform a SQL injection via the logs export feature. This vulnerability is fixed in 10.0.24 and 11.0.6.
1 affected package
glpi
| Package | 22.04 LTS |
|---|---|
| glpi | Not in release |
Not in release
GLPI is a free asset and IT management software package. From 11.0.0 to before 11.0.6, an unauthenticated time-based blind SQL injection exists in GLPI's Search engine. This vulnerability is fixed in 11.0.6.
1 affected package
glpi
| Package | 22.04 LTS |
|---|---|
| glpi | Not in release |
Not in release
GLPI is a free asset and IT management software package. From 11.0.0 to before 11.0.6, an unauthenticated user can store an XSS payload through the inventory endpoint. This vulnerability is fixed in 11.0.6.
1 affected package
glpi
| Package | 22.04 LTS |
|---|---|
| glpi | Not in release |
Not in release
GLPI is a free asset and IT management software package. From 11.0.0 to before 11.0.6, template injection by an administrator lead to RCE. This vulnerability is fixed in 11.0.6.
1 affected package
glpi
| Package | 22.04 LTS |
|---|---|
| glpi | Not in release |
Not in release
GLPI is a Free Asset and IT Management Software package. From 0.60 to before 10.0.24, an authenticated technician user can store an XSS payload in a supplier fields. This vulnerability is fixed in 10.0.24.
1 affected package
glpi
| Package | 22.04 LTS |
|---|---|
| glpi | Not in release |
A flaw was found in libtheora. This heap-based out-of-bounds read vulnerability exists within the AVI (Audio Video Interleave) parser, specifically in the avi_parse_input_file() function. A local attacker could exploit this by...
4 affected packages
asc, libtheora, mkvtoolnix, ogmrip
| Package | 22.04 LTS |
|---|---|
| asc | Vulnerable |
| libtheora | Vulnerable |
| mkvtoolnix | Vulnerable |
| ogmrip | Vulnerable |
[Unknown description]
1 affected package
mediawiki
| Package | 22.04 LTS |
|---|---|
| mediawiki | Needs evaluation |
[Unknown description]
1 affected package
mediawiki
| Package | 22.04 LTS |
|---|---|
| mediawiki | Needs evaluation |
[Unknown description]
1 affected package
mediawiki
| Package | 22.04 LTS |
|---|---|
| mediawiki | Needs evaluation |