MiracleLinux 8 : postgresql:9.6 (AXSA:2021-1513:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1513:01 advisory. postgresql: Reconnection can downgrade connection security settings CVE-2020-25694 postgresql: Multiple features escape security restricted operatio...

CVE-2020-10130

SearchBlox before Version 9.1 is vulnerable to business logic bypass where the user is able to create multiple super admin users in the system...

EUVD-2025-24811

Malicious code in bioql PyPI...

WordPress Layers plugin <= 0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zaim in WordPress Plugin Layers versions = 0.5...

postgresql: PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table

An access control bypass flaw has been discovered in PostgreSQL. The PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access. Separately, statistics allow a user to read sampled data that a row security policy intended to hide...

Linux Distros Unpatched Vulnerability : CVE-2016-10130

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The httpconnect function in transports/http.c in libgit2 before 0.24.6 and 0.25.x before 0.25.1 might allow man-in-the-middle attackers to spoof servers by...

MAL-2025-10130 Malicious code in @zalastax/nolb-_ing (npm)

The package @zalastax/nolb-ing was found to contain malicious code...

TencentOS Server 3: postgresql (TSSA-2022:0181)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0181 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

CVE-2024-10130

A vulnerability classified as critical was found in Tenda AC8 16.03.34.06. This vulnerability affects the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack can be initiated remotely. Th...

CVE-2024-10130

creationtimestamp| type| source ---|---|--- 2024-10-19 01:16:38+00:00| seen| https://t.me/cvedetector/8344...

CVE-2024-10130

A vulnerability classified as critical was found in Tenda AC8 16.03.34.06. This vulnerability affects the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack can be initiated remotely. Th...

CVE-2024-10130 Tenda AC8 SetSysAutoRebbotCfg formSetRebootTimer stack-based overflow

A vulnerability classified as critical was found in Tenda AC8 16.03.34.06. This vulnerability affects the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack can be initiated remotely. Th...

CVE-2024-10130 Tenda AC8 SetSysAutoRebbotCfg formSetRebootTimer stack-based overflow

A vulnerability classified as critical was found in Tenda AC8 16.03.34.06. This vulnerability affects the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack can be initiated remotely. Th...

CVE-2015-10130

creationtimestamp| type| source ---|---|--- 2024-03-13 04:26:49+00:00| seen| https://t.me/ctinow/206378 2024-03-13 04:31:26+00:00| seen| https://t.me/ctinow/206381...

CVE-2015-10130

CVE-2015-10130 pertains to the WordPress plugin Team Circle Image Slider With Lightbox (version 1.0). The issue is a Cross-Site Request Forgery (CSRF) flaw caused by missing/incorrect nonce validation in the function circle_thumbnail_slider_with_lightbox_image_management_func() . This can allow u...

WordPress Team Circle Image Slider With Lightbox Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Team Circle Image Slider With Lightbox Type Plugin Vulnerable versions = 1.0 Fixed in 1.0.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2015-10130 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 4e4875511ed9 Credit...

CVE-2020-10130

creationtimestamp| type| source ---|---|--- 2023-09-06 22:18:01+00:00| seen| https://t.me/cibsecurity/70021...

CVE-2020-10130

CVE-2020-10130 affects SearchBlox prior to version 9.1. The issue is described as a business logic bypass that allows a user to create multiple super admin users in the system. Remediation recommended in multiple sources is to upgrade to version 9.1 or later (or apply workaround to restrict acces...

BELL-CVE-2019-10130 CVE-2019-10130 does not affect BellSoft software

Bulletin has no description...

SUSE CVE-2019-10130

A vulnerability was found in PostgreSQL versions 11.x up to excluding 11.3, 10.x up to excluding 10.8, 9.6.x up to, excluding 9.6.13, 9.5.x up to, excluding 9.5.17. PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common values, contain...