Oracle Linux 10 : sudo (ELSA-2026-10758)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-10758 advisory. 1.9.15-10.p5 - Resolves: RHEL-164619 - CVE-2026-35535 sudo: Sudo: Privilege escalation due to failure in privilege drop calls Tenable has extracted the...

CVE-2026-32562

Missing Authorization vulnerability in WP Folio Team PPWP password-protect-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPWP: from n/a through = 1.9.15...

EUVD-2026-15927

Missing Authorization vulnerability in WP Folio Team PPWP password-protect-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPWP: from n/a through = 1.9.15...

CVE-2026-32562

Missing Authorization vulnerability in WP Folio Team PPWP password-protect-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPWP: from n/a through = 1.9.15...

CVE-2026-32562

Missing Authorization vulnerability in WP Folio Team PPWP password-protect-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPWP: from n/a through = 1.9.15...

CVE-2026-32562 WordPress PPWP plugin <= 1.9.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in WP Folio Team PPWP password-protect-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPWP: from n/a through = 1.9.15...

CVE-2026-32562 WordPress PPWP plugin <= 1.9.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in WP Folio Team PPWP password-protect-page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPWP: from n/a through = 1.9.15...

CVE-2026-32562

The CVE-2026-32562 entry corresponds to a Broken Access Control vulnerability in the WordPress PPWP plugin, affecting versions

WordPress PPWP plugin <= 1.9.15 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Doan Dinh Van in WordPress Plugin PPWP versions = 1.9.15...

EUVD-2019-6758

Malware in sbrugna...

EUVD-2022-15659

Malicious code in bioql PyPI...

PT-2024-16745 · Tumult · Tumult Hype Animations

Name of the Vulnerable Software and Affected Versions: Tumult Hype Animations plugin for WordPress versions up to, and including, 1.9.15 Description: The Tumult Hype Animations plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the hypeanimations...

WordPress Tumult Hype Animations plugin <= 1.9.15 - Authenticated (Author+) Arbitrary File Upload via hypeanimations_panel Function vulnerability

Authenticated Author+ Arbitrary File Upload via hypeanimationspanel Function vulnerability discovered by vgo0 in WordPress Plugin Tumult Hype Animations versions = 1.9.15...

WordPress Tumult Hype Animations Plugin <= 1.9.15 is vulnerable to Arbitrary File Upload

Software Tumult Hype Animations Type Plugin Vulnerable versions = 1.9.15 Fixed in 1.9.16 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-11082 Patch priority Medium CVSS severity Medium 9.1 Developer Claim ownership PSID 259828d3532b Credits vgo0 Required privilege...

gRPC Security Vulnerabilities

gRPC is a modern, open-source, high-performance remote procedure call RPC framework from gRPC Open Source. A security vulnerability exists in gRPC versions prior to 1.10.9, 1.9.15, and 1.8.22, which stems from the ability to allocate memory far beyond the configuration limit for incoming messages...

openSUSE: Security Advisory for maven, maven (SUSE-SU-2023:4527-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GLSA-202401-29 : sudo: Memory Manipulation

The remote host is affected by the vulnerability described in GLSA-202401-29 sudo: Memory Manipulation - Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of...

OESA-2024-1071 sudo security update

Sudo is a program designed to allow a sysadmin to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow people to get their work done. Security Fixes: Sudo before 1.9.15 might allow row hammer attacks for...

Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value) and because the values do not resist flips of a single bit.

...

SUSE CVE-2023-42465

Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...