CVE-2016-0955

creationtimestamp| type| source ---|---|--- 2026-05-07 04:25:07+00:00| seen| https://bsky.app/profile/adobedigest.bsky.social/post/3mlaep5nr3325...

CVE-2026-0955

creationtimestamp| type| source ---|---|--- 2026-03-21 14:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhl6waxklw2e...

Important Photon OS Security Update - PHSA-2026-4.0-0955

Updates of 'squid' packages of Photon OS have been released...

EUVD-2026-0955

Missing Authorization vulnerability in StellarWP The Events Calendar the-events-calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Events Calendar: from n/a through = 6.15.12.2...

Linux Distros Unpatched Vulnerability : CVE-2013-0955

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple iOS before 6.1, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash...

CVE-2021-0955

In pfwritebuf of FuseDaemon.cpp, there is possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-19208576...

CVE-1999-0955

Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command...

CVE-2025-0955

The VidoRev Extensions plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the 'vidorevimportsinglevideo' AJAX action in all versions up to, and including, 2.9.9.9.9.9.5. This makes it possible for unauthenticated attackers to import arbitrary youtube...

CVE-2025-0955

The VidoRev Extensions plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the 'vidorevimportsinglevideo' AJAX action in all versions up to, and including, 2.9.9.9.9.9.5. This makes it possible for unauthenticated attackers to import arbitrary youtube...

CVE-2025-0955

creationtimestamp| type| source ---|---|--- 2025-03-14 04:53:24+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7522 2025-03-14 06:41:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkcyxjtc6d2x 2025-03-14 08:20:52+00:00| seen| https://t.me/cvedetector/20272...

Rocky Linux 8 : firefox (RLSA-2024:0955)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:0955 advisory. - When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read...

BIT-PIMCORE-2022-0955

Cross-site Scripting XSS - Stored in GitHub repository pimcore/data-hub prior to 1.2.4...

Oracle Linux 8 : firefox (ELSA-2024-0955)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-0955 advisory. 115.8.0-1.0.1 - Update to 115.8.0 build 1 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

CVE-2024-0955

creationtimestamp| type| source ---|---|--- 2024-02-07 01:26:38+00:00| seen| Telegram/CcIPZVXRBlQwp6pSQiSDt5rOZKzGwHlfMMMesftR0du9REGZ...

CVE-2024-0955

CVE-2024-0955 is a stored XSS in Tenable Nessus where an authenticated administrator could alter proxy settings, potentially causing remote script execution. Affected software: Nessus (prior to 10.7.0). Impact per sources: proxy configuration manipulation leading to remote arbitrary scripts. Miti...

[R1] Nessus Version 10.7.0 Fixes Multiple Vulnerabilities

R1 Nessus Version 10.7.0 Fixes Multiple Vulnerabilities Arnie Cabral Tue, 02/06/2024 - 11:07 Two separate vulnerabilities were discovered, reported and fixed: A stored XSS vulnerability exists where an authenticated, remote attacker with administrator privileges on the Nessus application could...

WordPress WP Statistics Plugin < 14.0 is vulnerable to SQL Injection

Software WP Statistics Type Plugin Vulnerable versions 14.0 Fixed in 14.0 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-0955 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 442f3d5af675 Credits Erwan LR WPScan Required privilege Administrator Publish...

CVE-2023-0955

creationtimestamp| type| source ---|---|--- 2023-03-27 20:50:06+00:00| seen| https://t.me/cibsecurity/60805...

CVE-2023-0955 WP Statistics < 14.0 - Authenticated SQLi

The WP Statistics WordPress plugin before 14.0 does not escape a parameter, which could allow authenticated users to perform SQL Injection attacks. By default, the affected feature is available to users with the manageoptions capability admin+, however the plugin has a settings to allow low...

WordPress WP Statistics Plugin < 13.2.11 Multiple SQLi Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:veronalabs:wpstatistics"; ifdescription...