Vulnerabilities

A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS 5.202406.d. This issue affects some unknown processing of the file /admin/cmsTagType/save of the component Tag Type Handler. The manipulation of the argument name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> fork: only invoke khugepaged, ksm hooks if no error<br /> <br /> There is no reason to invoke these hooks early against an mm that is in an<br /> incomplete state.<br /> <br /> The change in commit d24062914837 ("fork: use __mt_dup() to duplicate<br /> maple tree in dup_mmap()") makes this more pertinent as we may be in a<br /> state where entries in the maple tree are not yet consistent.<br /> <br /> Their placement early in dup_mmap() only appears to have been meaningful<br /> for early error checking, and since functionally it&amp;#39;d require a very small<br /> allocation to fail (in practice &amp;#39;too small to fail&amp;#39;) that&amp;#39;d only occur in<br /> the most dire circumstances, meaning the fork would fail or be OOM&amp;#39;d in<br /> any case.<br /> <br /> Since both khugepaged and KSM tracking are there to provide optimisations<br /> to memory performance rather than critical functionality, it doesn&amp;#39;t<br /> really matter all that much if, under such dire memory pressure, we fail<br /> to register an mm with these.<br /> <br /> As a result, we follow the example of commit d2081b2bf819 ("mm:<br /> khugepaged: make khugepaged_enter() void function") and make ksm_fork() a<br /> void function also.<br /> <br /> We only expose the mm to these functions once we are done with them and<br /> only if no error occurred in the fork operation.

In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the auto-generation function was identified. Reported by Karol Wi?sek.

In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the refuse function was identified. Reported by Karol Wi?sek.

In Helix Core versions prior to 2024.2, an unauthenticated remote Denial of Service (DoS) via the shutdown function was identified. Reported by Karol Wi?sek.

Arbitrary file overwrite during recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel &amp; WHM (Linux) before build 1.8.3.818, Acronis Backup plugin for cPanel &amp; WHM (Linux) before build 1.9.1.892, Acronis Backup extension for Plesk (Linux) before build 1.8.6.599, Acronis Backup plugin for DirectAdmin (Linux) before build 1.2.2.181.

Sensitive information disclosure during file browsing due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel &amp; WHM (Linux) before build 1.8.3.818, Acronis Backup plugin for cPanel &amp; WHM (Linux) before build 1.9.1.892.

A flaw was found in moodle. External API access to Quiz can override contained insufficient access control.

A flaw was found in moodle. The cURL wrapper in Moodle strips HTTPAUTH and USERPWD headers during emulated redirects, but retains other original request headers, so HTTP authorization header information could be unintentionally sent in requests to redirect URLs.

A flaw was found in moodle. Matrix room membership and power levels are incorrectly applied and revoked for suspended Moodle users.

A flaw was found in moodle. Insufficient capability checks make it possible for users with access to restore glossaries in courses to restore them into the global site glossary.

A flaw was found in moodle. Insufficient sanitizing of data when performing a restore could result in a cross-site scripting (XSS) risk from malicious backup files.