PEEL Shopping 9.3.0 - 'Comments/Special Instructions' Stored Cross-Site Scripting

PEEL eCommerce PEEL Shopping

Unified Remote 3.9.0.2463 - Remote Code Execution

Unified Intents AB Unified Remote

LogonExpert 8.1 - 'LogonExpertSvc' Unquoted Service Path

Softros Systems LogonExpert

Softros LAN Messenger 9.6.4 - 'SoftrosSpellChecker' Unquoted Service Path

Softros Systems LAN Messenger

Textpattern 4.8.3 - Remote code execution

The Textpattern Development Team Textpattern

dataSIMS Avionics ARINC 664-1 - Local Buffer Overflow

Data Device Corporation dataSIMS Avionics ARINC

MyBB Trending Widget Plugin 1.2 - Cross-Site Scripting

zainali99 MyBB Trending Widget Plugin

MyBB Thread Redirect Plugin 0.2.1 - Cross-Site Scripting

jamiesage123 MyBB Thread Redirect Plugin

LavaLite CMS <= 10.1.0 Stored XSS via Package Creation and Search

LavaLite LavaLite CMS

email BytesGenerator header injection due to unquoted newlines

Python Software Foundation CPython

ublk: fix use-after-free in ublk_partition_scan_work

Linux Linux Linux Linux

bpf: Fix reference count leak in bpf_prog_test_run_xdp()

Linux Linux Linux Linux

idpf: Fix RSS LUT NULL ptr issue after soft reset

Linux Linux Linux Linux

libceph: return the handler error from mon_handle_auth_done()

Linux Linux Linux Linux

libceph: make free_choose_arg_map() resilient to partial allocation

Linux Linux

libceph: replace overzealous BUG_ON in osdmap_apply_incremental()

Linux Linux

nfsd: check that server is running in unlock_filesystem

Linux Linux Linux Linux

arp: do not assume dev_hard_header() does not change skb->head

Linux Linux Linux Linux

net/sched: act_api: avoid dereferencing ERR_PTR in tcf_idrinfo_destroy

Linux Linux Linux Linux

gpiolib: fix race condition for gdev->srcu

Linux Linux Linux Linux