Category: CVSS3 - CRITICAL
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : PHP vulnerabilities (USN-5902-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5902-1 advisory. - In PHP 8.0.X before 8.0.28, ...

Continue Reading

March 01, 2023

php security update

[8.0.27-1] - rebase to 8.0.27Read More ...

Continue Reading

February 28, 2023

PHP vulnerabilities

## Releases * Ubuntu 22.10 * Ubuntu 22.04 LTS * Ubuntu 20.04 LTS * Ubuntu 18.04 LTS ## Packages * php7.2 - HTML-embedded scripting language interpreter * php7.4 - HTML-embedded scripting l ...

Continue Reading

February 28, 2023

PHP vulnerabilities

## Releases * Ubuntu 22.10 * Ubuntu 22.04 LTS * Ubuntu 20.04 LTS * Ubuntu 18.04 LTS ## Packages * php7.2 - HTML-embedded scripting language interpreter * php7.4 - HTML-embedded scripting l ...

Continue Reading

February 28, 2023

SUSE SLES15 / openSUSE 15 Security Update : php8 (SUSE-SU-2023:0527-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0527-1 advisory. - In PHP 8.0.X before 8.0.28, ...

Continue Reading

February 28, 2023

Jenkins plugins Multiple Vulnerabilities (2023-01-24)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - High Script Security Plugin provides a s ...

Continue Reading

February 28, 2023

Jenkins plugins Multiple Vulnerabilities (2023-01-24)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - High Script Security Plugin provides a s ...

Continue Reading

February 28, 2023

CVE-2022-45138

The configuration backend of the web-based management can be used by unauthenticated users, although only authenticated users should be able to use the API. The vulnerability allows an unauthenticated ...

Continue Reading

February 27, 2023

CVE-2022-45140

The configuration backend allows an unauthenticated user to write arbitrary data with root privileges to the storage, which could lead to unauthenticated remote code execution and full system compromi ...

Continue Reading

February 27, 2023

CVE-2022-45138

The configuration backend of the web-based management can be used by unauthenticated users, although only authenticated users should be able to use the API. The vulnerability allows an unauthenticated ...

Continue Reading

February 27, 2023

Load more