WordPress Visual Form Builder <3.0.8 - Information Disclosure

WordPress Visual Form Builder plugin before 3.0.8 contains a information disclosure vulnerability. The plugin does not perform access control on entry form export, allowing an unauthenticated user to export the form entries as CSV files using the vfb-export endpoint. id: CVE-2022-0140 info: name:...

Oracle Linux 9 : nginx:1.26 (ELSA-2026-4235)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-4235 advisory. 2:1.26.3-2.0.1 - Require oracle-indexhtml Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Ness...

CVE-2026-0810

A flaw was found in gix-date. The gixdate::parse::TimeBuf::asstr function can generate strings containing invalid non-UTF8 characters. This issue violates the internal safety invariants of the TimeBuf component, leading to undefined behavior when these malformed strings are subsequently processed...

RHSA-2026:0140

creationtimestamp| type| source ---|---|--- 2026-01-07 07:59:31+00:00| seen| https://gist.github.com/Darkcrai86/e324d6ee752dbf6eb468d5f19062efc3...

RHEL 8 : grafana-pcp (RHSA-2026:0140)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:0140 advisory. The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace...

EUVD-2026-0140

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

PT-2026-4735

Name of the Vulnerable Software and Affected Versions gix-date affected versions not specified Description The gix date::parse::TimeBuf::as str function can produce strings with invalid, non-UTF8 characters. This breaks internal safety rules within the TimeBuf component, potentially causing...

EUVD-2008-0222

Malware in sbrugna...

Alibaba Cloud Linux 3 : 0140: mingw-sqlite (ALINUX3-SA-2025:0140)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2025:0140 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-6965: There exists a vulnerability in SQLi...

CVE-2025-0140

creationtimestamp| type| source ---|---|--- 2025-07-09 14:00:00+00:00| seen| https://security.paloaltonetworks.com/CVE-2025-0140 2025-07-09 19:03:23+00:00| seen| https://bsky.app/profile/ripjyr.bsky.social/post/3ltkixldojo2v 2025-07-11 10:56:25+00:00| seen|...

TencentOS Server 3: libinput (TSSA-2022:0140)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0140 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CVE-2022-0140

The Visual Form Builder WordPress plugin before 3.0.6 does not perform access control on entry form export, allowing unauthenticated users to see the form entries or export it as a CSV File using the vfb-export endpoint...

CVE-2020-0140

In rwi93smdetectndef of rwi93.c, there is a possible information disclosure due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android I...

CVE-2019-0140

Buffer overflow in firmware for IntelR Ethernet 700 Series Controllers before version 7.0 may allow an unauthenticated user to potentially enable an escalation of privilege via an adjacent access...

CVE-2024-0140

creationtimestamp| type| source ---|---|--- 2025-01-28 03:24:40+00:00| seen| https://infosec.exchange/users/cve/statuses/113903840773074829 2025-01-28 04:15:29+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgrlsqwomv2w 2025-01-28 06:15:13+00:00| seen|...

openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0016-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Critical Photon OS Security Update - PHSA-2023-5.0-0140

Updates of 'memcached', 'pgbouncer' packages of Photon OS have been released...

Mageia: Security Advisory (MGASA-2023-0016)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 Security Update : libzypp-plugin-appdata (SUSE-SU-2023:0140-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:0140-1 advisory. - An Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in libzypp-plugin-appdata of SUS...

Updated chromium-browser-stable packages fix security vulnerability

The chromium-browser-stable package has been updated to the 109.0.5414.74 release, fixing 17 vulnerabilities. Some of the security fixes are - High CVE-2023-0128 Use after free in Overview Mode. Reported by Khalil Zhani on 2022-08-16 High CVE-2023-0129 Heap buffer overflow in Network Service...