CVE-2025-10396

creationtimestamp| type| source ---|---|--- 2025-09-14 10:02:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyrzxr5kja2f 2025-09-14 10:31:50+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lys3mk5wsm2w...

CVE-2014-10396

The epic theme through 2014-09-07 for WordPress allows arbitrary file downloads via the file parameter to includes/download.php...

Linux Distros Unpatched Vulnerability : CVE-2024-10396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An authenticated user can provide a malformed ACL to the fileserver's StoreACL RPC, causing the fileserver to crash, possibly expose uninitialized memory, and...

Linux Distros Unpatched Vulnerability : CVE-2016-10396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments. The...

Mageia: Security Advisory (MGASA-2025-0013)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-10396

An authenticated user can provide a malformed ACL to the fileserver's StoreACL RPC, causing the fileserver to crash, possibly expose uninitialized memory, and possibly store garbage data in the audit log. Malformed ACLs provided in responses to client FetchACL RPCs can cause client processes to...

CVE-2024-10396

creationtimestamp| type| source ---|---|--- 2024-11-14 19:34:19+00:00| seen| https://infosec.exchange/users/cve/statuses/113482980334287462 2024-11-14 21:41:09+00:00| seen| https://t.me/cvedetector/11007...

RHEL 5 : ipsec-tools (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - ipsec-tools: Parsing and storing ISAKMP fragments in malicious order can exhaust resources CVE-2016-10396 Note that...

Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by a vulnerability in IPsec-Tools (CVE-2016-10396)

Summary IBM Flex System Chassis Management Module CMM has addressed the following vulnerability in IPsec-Tools. Vulnerability Details CVEID: CVE-2016-10396 DESCRIPTION: IPsec-Tools is vulnerable to a denial of service, caused by a flaw in the racoon daemon. By repeatedly sending ISAKMP fragment...

org.jenkins-ci.plugins:project-build-times (>=1.0 <=1.2.1), org.jenkins-ci.plugins:project-stats-plugin (>=0.1 <=0.4) potentially affected by CVE-2019-10396 via org.jenkins-ci.plugins:dashboard-view (>=2.0 <=2.0.2)

org.jenkins-ci.plugins:dashboard-view MAVEN version =2.0, =1.0, =0.1, =0.4 Source cves: CVE-2019-10396 Source advisory: OSV:GHSA-FV4Q-4H24-23QR...

Mageia: Security Advisory (MGASA-2018-0010)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:0423-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:0424-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-10396

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/add-language.php by adding a question mark ? followed by the payload...

CVE-2020-10396

CVE-2020-10396 affects Chadha PHPKB Standard Multi-Language 9. Reflected XSS is possible via URIs processed by admin/header.php, demonstrated in admin/add-language.php when a leading ? is followed by a payload. Impact is reflected script/HTML execution; CVSS vectors indicate at least low to mediu...

CVE-2014-10396

The epic theme through 2014-09-07 for WordPress allows arbitrary file downloads via the file parameter to includes/download.php...

CVE-2014-10396

The CVE-2014-10396 entry corresponds to a vulnerability in the Epic WordPress theme (prior to fix date not provided in the documents) that allows arbitrary file downloads through the file parameter to includes/download.php. Affected component: Epic WordPress theme; vulnerability type: arbitrary f...

CVE-2019-10396

CVE-2019-10396 affects Jenkins Dashboard View Plugin versions 2.11 and earlier. The root cause is failure to escape build descriptions in the Latest Builds View, enabling cross-site scripting by users who can modify build descriptions. Public sources (Red Hat, GitHub advisories, and CVE records) ...

openSUSE Security Update : ipsec-tools (openSUSE-2018-159)

This update for ipsec-tools fixes one issue. This security issue was fixed : - CVE-2016-10396: The racoon daemon contained a remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments that allowed a remote attacker to exhaust computational resources on the remo...

SUSE SLES11 Security Update : ipsec-tools (SUSE-SU-2018:0423-1)

This update for ipsec-tools fixes one issue. This security issue was fixed : - CVE-2016-10396: The racoon daemon contained a remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments that allowed a remote attacker to exhaust computational resources on the remo...