EUVD-2026-0631

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

Photon OS 5.0: Open PHSA-2025-5.0-0631

An update of the open package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0631. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Important Photon OS Security Update - PHSA-2025-5.0-0631

Updates of 'open-vm-tools' packages of Photon OS have been released...

CVE-2022-0631

Heap-based Buffer Overflow in Homebrew mruby prior to 3.2...

CVE-2020-0631

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626,...

CVE-2025-0631

creationtimestamp| type| source ---|---|--- 2025-01-28 18:30:40+00:00| seen| https://infosec.exchange/users/cve/statuses/113907403342724715 2025-01-28 19:15:29+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgt642whzp2r 2025-01-28 21:17:43+00:00| seen|...

Photon OS 3.0: Flannel PHSA-2023-3.0-0631

An update of the flannel package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0631. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2024-0631

The Duitku Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the checkduitkuresponse function in all versions up to, and including, 2.11.6. This makes it possible for unauthenticated attackers to change the payment status ...

CVE-2024-0631 Duitku Payment Gateway <= 2.11.6 - Missing Authorization via check_duitku_response

The Duitku Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the checkduitkuresponse function in all versions up to, and including, 2.11.6. This makes it possible for unauthenticated attackers to change the payment status ...

CVE-2024-0631

The CVE refers to the Duitku Payment Gateway WordPress plugin (WordPress) with a vulnerable check_duitku_response function. The issue is due to a missing capability check that affects all versions up to and including 2.11.4, allowing unauthenticated attackers to modify data and set payments to fa...

WordPress Duitku Payment Gateway Plugin <= 2.11.6 is vulnerable to Broken Access Control

Software Duitku Payment Gateway Type Plugin Vulnerable versions = 2.11.6 Fixed in 2.11.7 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-0631 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 48de9cbc8e6d Credits Francesco Carlucci...

CVE-2013-0631

creationtimestamp| type| source ---|---|--- 2023-06-14 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-04 16:42:35+00:00| exploited| https://t.me/arpsyndicate/1253 2024-12-24 20:28:16+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971366 2025-02-06 02:43:26+00:0...

SUSE: Security Advisory (SUSE-SU-2023:0631-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-0631

creationtimestamp| type| source ---|---|--- 2023-03-20 21:04:34+00:00| seen| https://t.me/cibsecurity/60344...

CVE-2023-0631

The Paid Memberships Pro WordPress plugin before 2.9.12 does not prevent subscribers from rendering shortcodes that concatenate attributes directly into an SQL query...

CVE-2023-0631

The Paid Memberships Pro WordPress plugin (pre-2.9.12) is affected: subscribers can render shortcodes that concatenate attributes directly into an SQL query, due to insufficient input handling. This creates an SQL injection vulnerability with high impact. The issue is fixed in version 2.9.12; use...

CVE-2023-0631 Paid Memberships Pro < 2.9.12 - Subscriber+ SQL Injection

The Paid Memberships Pro WordPress plugin before 2.9.12 does not prevent subscribers from rendering shortcodes that concatenate attributes directly into an SQL query...

CVE-2023-0631 Paid Memberships Pro < 2.9.12 - Subscriber+ SQL Injection

The Paid Memberships Pro WordPress plugin before 2.9.12 does not prevent subscribers from rendering shortcodes that concatenate attributes directly into an SQL query...

WordPress Paid Memberships Pro Plugin <= 2.9.11 is vulnerable to SQL Injection

Software Paid Memberships Pro Type Plugin Vulnerable versions = 2.9.11 Fixed in 2.9.12 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-0631 Patch priority High CVSS severity High 7.7 Developer Claim ownership PSID c680ed84c0a0 Credits Marc Montpas Required privilege Subscribe...

Synology Calendar 路径遍历漏洞

Synology Calendar is a file protection program from Synology Inc. of Taiwan, China that runs on Synology NAS Network Storage Server devices. A path traversal vulnerability exists in Synology Calendar versions prior to 2.3.4-0631, which stems from an improper restriction on the pathname of a...