CVE-2025-53233

CVE-2025-53233 concerns the WordPress Storyform plugin (versions

CVE-2025-53233 WordPress Storyform plugin <= 0.6.14 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RylanH Storyform storyform allows Reflected XSS.This issue affects Storyform: from n/a through = 0.6.14...

WordPress plugin Storyform 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

PT-2026-21037

Name of the Vulnerable Software and Affected Versions RylanH Storyform versions through 0.6.14 Description The software contains a flaw due to improper neutralization of input during web page generation, specifically a Reflected Cross-site Scripting issue. This allows for the execution of malicio...

WordPress Storyform plugin <= 0.6.14 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nguyen Thi Huyen Trang - Skalucy in WordPress Plugin Storyform versions = 0.6.14...

Allocation of Resources Without Limits or Throttling

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling through the api/v1/utils/code/format endpoint. An attacker can cause the server to become unresponsive or experience significant degradation by sending a...

WordPress plugin Advanced Recent Posts 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress...

GHSA-43W2-9J62-HQ99 Buffer overflow in SmallVec::insert_many

A bug in the SmallVec::insertmany method caused it to allocate a buffer that was smaller than needed. It then wrote past the end of the buffer, causing a buffer overflow and memory corruption on the heap. This bug was only triggered if the iterator passed to insertmany yielded more items than the...

Boa (>=0.9.0 <=0.10.0), GetPDB (>=0.1.0 <=1.0.1) +5145 more potentially affected by CVE-2018-20991 via smallvec (>=0.3.4 <=0.6.14)

smallvec CARGO version =0.3.4, =0.9.0, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =0.2.0, =0.5.3, =0.1.0, =0.5.0, =0.5.0, =0.5.2 and more Source cves: CVE-2018-20991 Source advisory: OSV:GHSA-RXR4-X558-X7HW...

UBUNTU-CVE-2021-25900

An issue was discovered in the smallvec crate before 0.6.14 and 1.x before 1.6.1 for Rust. There is a heap-based buffer overflow in SmallVec::insertmany...

Rust Buffer Error Vulnerability

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A buffer error vulnerability exists in Rust smallvec crate before 0.6.14 and 1.x before 1.6.1, which stems from a heap-based buffer overflow in SmallVec::insert many...

Buffer overflow in SmallVec::insert_many

A bug in the SmallVec::insertmany method caused it to allocate a buffer that was smaller than needed. It then wrote past the end of the buffer, causing a buffer overflow and memory corruption on the heap. This bug was only triggered if the iterator passed to insertmany yielded more items than the...

LibEXIF 0.6.x - Exif_Data_Load_Data_Entry Remote Integer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23927/info The libexif library is prone to an integer-overflow vulnerability because the software fails to properly ensure that integer math operations do not result in overflows. Successful exploits of this vulnerability...

LibEXIF 0.6.x - Exif_Data_Load_Data_Entry Remote Integer Overflow

source: https://www.securityfocus.com/bid/23927/info The libexif library is prone to an integer-overflow vulnerability because the software fails to properly ensure that integer math operations do not result in overflows. Successful exploits of this vulnerability allow remote attackers to execute...