CVE-2025-10392

creationtimestamp| type| source ---|---|--- 2025-09-14 07:17:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyrqqhosz72j 2025-09-15 01:32:58+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lytnxuncg72q...

MAL-2025-10392 Malicious code in @zalastax/nolb-_ryb (npm)

The package @zalastax/nolb-ryb was found to contain malicious code...

CVE-2014-10392

The cforms2 plugin before 10.2 for WordPress has XSS...

Linux Distros Unpatched Vulnerability : CVE-2018-10392

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mapping0forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a denial of service...

CVE-2024-10392

creationtimestamp| type| source ---|---|--- 2024-10-31 07:45:06+00:00| seen| https://t.me/cvedetector/9490...

CVE-2024-10392 AI Power: Complete AI Pack <= 1.8.89 - Unauthenticated Arbitrary File Upload

The AI Power: Complete AI Pack plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'handleimageupload' function in all versions up to, and including, 1.8.89. This makes it possible for unauthenticated attackers to upload arbitrary files on the...

VulnCheck KEV: CVE-2024-10392

The AI Power: Complete AI Pack plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'handleimageupload' function in all versions up to, and including, 1.8.89. This makes it possible for unauthenticated attackers to upload arbitrary files on the...

WordPress GPT3 AI Content Writer Plugin <= 1.8.89 is vulnerable to Arbitrary File Upload

Software GPT3 AI Content Writer Type Plugin Vulnerable versions = 1.8.89 Fixed in 1.8.90 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-10392 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 7f062ed6d685 Credits vgo0 Required privilege...

RHEL 7 : libvorbis (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libvorbis: heap buffer overflow in mapping0forward function CVE-2018-10392 - The vorbisanalysiswrote...

RHEL 6 : libvorbis (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libvorbis: heap buffer overflow in mapping0forward function CVE-2018-10392 - The vorbisanalysiswrote...

RHEL 5 : libvorbis (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libvorbis: heap buffer overflow in mapping0forward function CVE-2018-10392 - The vorbisanalysiswrote...

RHEL 7 : libvorbis (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libvorbis: heap buffer overflow in mapping0forward function CVE-2018-10392 - The vorbisanalysiswrote...

CVE-2018-10392 affecting package libvorbis for versions less than 1.3.7-1

CVE-2018-10392 affecting package libvorbis for versions less than 1.3.7-1. An upgraded version of the package is available that resolves this issue...

Oracle Linux 8 : libvorbis (ELSA-2019-3703)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-3703 advisory. 1.3.6-2 - Sync with git for CVE-2017-14160, CVE-2018-10392, CVE-2018-10393 Tenable has extracted the preceding description block directly from the Orac...

BELL-CVE-2018-10392 CVE-2018-10392 does not affect BellSoft software

Bulletin has no description...

SUSE CVE-2018-10392

mapping0forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a denial of service heap-based buffer overflow or over-read or possibly have unspecified other impact via a crafted file...

br.com.ingenieux.jenkins.plugins:codecommit-url-helper (=0.0.1), com.amcbridge:build-configurator (>=1.0.5.0 <=1.0.6.1) +135 more potentially affected by CVE-2019-10392 via org.jenkins-ci.plugins:git-client (>=1.0.2 <=2.7.7)

org.jenkins-ci.plugins:git-client MAVEN version =1.0.2, =1.0.5.0, =1.1.0, =1.9.2-beta, =1.9, =4.0.9, =1.1.0, =1.0.0, =1.0.1, =1.1.3, =1.7.2, =1.1.0, =1.0.0, =1.0.22, =1.0.57 and more Source cves: CVE-2019-10392 Source advisory: OSV:GHSA-HW6X-2QWV-RXR7...

Ubuntu 16.04 ESM : Vorbis vulnerabilities (USN-5420-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5420-1 advisory. It was discovered that Vorbis incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service, or possibly...

USN-5420-1: Vorbis vulnerabilities

It was discovered that Vorbis incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service, or possibly execute arbitrary code. CVE-2017-14160, CVE-2018-10392, CVE-2018-10393...

Mageia: Security Advisory (MGASA-2017-0390)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...