Photon OS 4.0: Glib PHSA-2026-4.0-0943

An update of the glib package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-0943. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

RHSA-2026:0907

creationtimestamp| type| source ---|---|--- 2026-01-21 07:52:32+00:00| seen| https://gist.github.com/Darkcrai86/f5802e070338f82ded5490674eb75562...

DEBIAN-CVE-2026-0907

Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

CVE-2026-0907

Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

Fedora: Security Advisory (FEDORA-2026-3736e2ff1a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 42 : chromium (2026-3736e2ff1a)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3736e2ff1a advisory. Update to 144.0.7559.59 CVE-2026-0899: Out of bounds memory access in V8 CVE-2026-0900: Inappropriate implementation in V8 CVE-2026-0901:...

SUSE CVE-2026-0907

Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

Debian dsa-6100 : chromium - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6100 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6100-1 [email protected]...

CVE-2026-0907

creationtimestamp| type| source ---|---|--- 2026-01-14 15:25:16+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mcfevj3gvr26 2026-01-20 06:18:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mctj4vht5e2t 2026-01-20 17:28:22+00:00| seen|...

CVE-1999-0907

sccw allows local users to read arbitrary files...

CVE-2025-0907

PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

CVE-2025-0907

CVE-2025-0907 concerns PDF-XChange Editor with an out-of-bounds read in the JB2 file parsing module. The flaw stems from insufficient validation of user-supplied JB2 data, which can read past the end of an allocated object. This leads to information disclosure, with remote attackers able to explo...

CVE-2025-0907 PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

CVE-2025-0907 PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

CVE-2025-0907

creationtimestamp| type| source ---|---|--- 2025-01-31 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-069/ 2025-02-11 20:16:34+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwi277v3w2z 2025-02-11 21:13:45+00:00| seen|...

CVE-2024-0907

The NEX-Forms – Ultimate Form Builder – Contact forms and much more plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the restorerecords function in all versions up to, and including, 8.5.6. This makes it possible for authenticated attackers, with...

CVE-2024-0907

creationtimestamp| type| source ---|---|--- 2024-02-22 19:47:09+00:00| seen| https://t.me/ctinow/191079 2025-05-07 20:22:44+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15406...

CVE-2024-0907

CVE-2024-0907 affects the WordPress plugin NEX-Forms – Ultimate Form Builder (restore_records() function). Root cause: missing capability check allows unauthorized access to restore records. Affected versions: all up to and including 8.5.6 (per CVE entry). Impact: authenticated users with subscri...

Malicious code in wlwz-2312-0907 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ad3aeb031e9e9d9f91f64a1eb64be2c4a49362f64eff9307718007e80e129b0f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-0907 Filseclab Twister Antivirus IoControlCode ffsmon.sys 0x220017 denial of service

A vulnerability, which was classified as problematic, has been found in Filseclab Twister Antivirus 8.17. Affected by this issue is the function 0x220017 in the library ffsmon.sys of the component IoControlCode Handler. The manipulation leads to denial of service. An attack has to be approached...