Aggregator

CVE-2025-68258 | Linux Kernel up to 6.12.61/6.17.11/6.18.0 kernel/sched/core.c multiq3_attach denial of service (EUVD-2025-203743 / WID-SEC-2025-2868)

Vuldb Updates
2 days 7 hours ago
A vulnerability was found in Linux Kernel up to 6.12.61/6.17.11/6.18.0. It has been declared as critical. This vulnerability affects the function multiq3_attach of the file kernel/sched/core.c. Executing a manipulation can lead to denial of service. This vulnerability is registered as CVE-2025-68258. The attack requires access to the local network. No exploit is available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-68257 | Linux Kernel up to 6.12.61/6.17.11/6.18.0 IOCTL comedi_fops.c get_valid_routes null pointer dereference (EUVD-2025-203740 / WID-SEC-2025-2868)

Vuldb Updates
2 days 7 hours ago
A vulnerability identified as critical has been detected in Linux Kernel up to 6.12.61/6.17.11/6.18.0. The affected element is the function get_valid_routes of the file drivers/comedi/comedi_fops.c of the component IOCTL Handler. This manipulation causes null pointer dereference. This vulnerability appears as CVE-2025-68257. The attacker needs to be present on the local network. There is no available exploit. You should upgrade the affected component.
vuldb.com

CVE-2025-68256 | Linux Kernel up to 6.12.61/6.17.11/6.18.0 rtw_get_ie out-of-bounds (EUVD-2025-203737 / WID-SEC-2025-2868)

Vuldb Updates
2 days 7 hours ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.12.61/6.17.11/6.18.0. Affected is the function rtw_get_ie. The manipulation leads to out-of-bounds read. This vulnerability is uniquely identified as CVE-2025-68256. The attack can only be initiated within the local network. No exploit exists. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-68255 | Linux Kernel up to 6.12.61/6.17.11/6.18.0 OnAssocReq IE Parser memcpy stack-based overflow (EUVD-2025-203742 / Nessus ID 296481)

Vuldb Updates
2 days 7 hours ago
A vulnerability was found in Linux Kernel up to 6.12.61/6.17.11/6.18.0. It has been rated as critical. This issue affects the function memcpy of the component OnAssocReq IE Parser. The manipulation leads to stack-based buffer overflow. This vulnerability is documented as CVE-2025-68255. The attack requires being on the local network. There is not any exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2025-68254 | Linux Kernel up to 6.12.61/6.17.11/6.18.0 ESR IE Parser out-of-bounds (EUVD-2025-203746 / WID-SEC-2025-2868)

Vuldb Updates
2 days 7 hours ago
A vulnerability labeled as critical has been found in Linux Kernel up to 6.12.61/6.17.11/6.18.0. The impacted element is an unknown function of the component ESR IE Parser. Such manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2025-68254. Access to the local network is required for this attack to succeed. There is no exploit available. The affected component should be upgraded.
vuldb.com

CVE-2025-68253 | Linux Kernel up to 6.17.5 mm/page_owner.c add_stack_record_to_list stack-based overflow (EUVD-2025-203643 / WID-SEC-2025-2868)

Vuldb Updates
2 days 7 hours ago
A vulnerability was found in Linux Kernel up to 6.17.5. It has been declared as critical. This impacts the function add_stack_record_to_list of the file mm/page_owner.c. Such manipulation leads to stack-based buffer overflow. This vulnerability is listed as CVE-2025-68253. The attack must be carried out from within the local network. There is no available exploit. It is recommended to upgrade the affected component.
vuldb.com

OpenClaw(原MoltBot/ClawdBot) v2026.2.2版发布 新增飞书和Lark插件的支持

不安全
2 days 7 hours ago
好的,我现在要帮用户总结这篇文章的内容,控制在100字以内。首先,我需要通读整篇文章,抓住主要信息点。 文章主要讲的是OpenClaw发布了v2026.2.2版本,新增了飞书和Lark的插件支持。这些插件能实现客户端支持、监控、消息发送等功能。同时,文章还提到如何安装和配置飞书机器人,包括创建企业应用和获取应用ID及密钥。 接下来,我需要将这些信息浓缩到100字以内。要注意直接描述内容,不需要使用“文章总结”之类的开头。要确保涵盖版本更新、新增功能、插件支持以及安装配置步骤。 最后,检查一下字数是否符合要求,并确保语句通顺,信息完整。 OpenClaw v2026.2.2版本发布,新增飞书和Lark通道插件支持,实现客户端支持、监控、消息发送等功能。用户可安装插件并配置机器人,支持飞书国内版和国际版。详细文档提供安装和配置指南。

SLH

Dark Feed IO
2 days 8 hours ago

You must login to view this content

cohenido

SLH

Dark Feed IO
2 days 8 hours ago

You must login to view this content

cohenido

CVE-2025-69604 | Shirt Pocket SuperDuper up to 3.11 Default Task Template default permission (EUVD-2025-206519)

Vuldb Updates
2 days 8 hours ago
A vulnerability classified as critical has been found in Shirt Pocket SuperDuper up to 3.11. This affects an unknown function of the component Default Task Template Handler. Performing a manipulation results in incorrect default permissions. This vulnerability is identified as CVE-2025-69604. The attack is only possible with local access. There is not any exploit available.
vuldb.com

CVE-2025-36366 | IBM DB2/DB2 Connect Server up to 11.5.9/12.1.3 Data Query Logic data query logic injection (EUVD-2025-206559)

Vuldb Updates
2 days 8 hours ago
A vulnerability described as problematic has been identified in IBM DB2 and DB2 Connect Server up to 11.5.9/12.1.3. This vulnerability affects unknown code of the component Data Query Logic. Such manipulation leads to improper neutralization of special elements in data query logic. This vulnerability is traded as CVE-2025-36366. The attack may be launched remotely. There is no exploit available. Upgrading the affected component is recommended.
vuldb.com

CVE-2026-1589 | itsourcecode School Management System 1.0 index.php txtsearch sql injection

Vuldb Updates
2 days 8 hours ago
A vulnerability, which was classified as critical, has been found in itsourcecode School Management System 1.0. This affects an unknown function of the file /ramonsys/inquiry/index.php. This manipulation of the argument txtsearch causes sql injection. This vulnerability is handled as CVE-2026-1589. The attack can be initiated remotely. Additionally, an exploit exists.
vuldb.com

CVE-2026-1590 | itsourcecode School Management System 1.0 index.php ID sql injection

Vuldb Updates
2 days 8 hours ago
A vulnerability, which was classified as critical, was found in itsourcecode School Management System 1.0. This impacts an unknown function of the file /ramonsys/faculty/index.php. Such manipulation of the argument ID leads to sql injection. This vulnerability is uniquely identified as CVE-2026-1590. The attack can be launched remotely. Moreover, an exploit is present.
vuldb.com

CVE-2026-1593 | itsourcecode Society Management System 1.0 edit_expenses_query.php detail sql injection

Vuldb Updates
2 days 8 hours ago
A vulnerability was found in itsourcecode Society Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/edit_expenses_query.php. Executing a manipulation of the argument detail can lead to sql injection. The identification of this vulnerability is CVE-2026-1593. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2026-1594 | itsourcecode Society Management System 1.0 /admin/add_expenses.php detail sql injection

Vuldb Updates
2 days 8 hours ago
A vulnerability was found in itsourcecode Society Management System 1.0. It has been classified as critical. Affected by this issue is some unknown functionality of the file /admin/add_expenses.php. The manipulation of the argument detail leads to sql injection. This vulnerability is referenced as CVE-2026-1594. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
vuldb.com

Managed ad