CVE-2026-10886

creationtimestamp| type| source ---|---|--- 2026-06-05 13:23:24+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918...

Linux Distros Unpatched Vulnerability : CVE-2026-10886

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page...

EUVD-2018-13593

Malware in sbrugna...

CVE-2016-10886

The wp-editor plugin before 1.2.6 for WordPress has incorrect permissions...

Security Bulletin: CVE-2018-10886 ant before version 1.9.12 unzip and untar targets allows the extraction of files outside the target directory.

Summary ant before version 1.9.12 unzip and untar targets allows the extraction of files outside the target directory. A crafted zip or tar file submitted to an Ant build could create or overwrite arbitrary files with the privileges of the user running Ant. Vulnerability Details...

CVE-2024-10886

creationtimestamp| type| source ---|---|--- 2024-11-23 03:49:32+00:00| seen| https://infosec.exchange/users/cve/statuses/113530226011472809...

WordPress Tribute Testimonials Plugin <= 1.0.4 is vulnerable to Cross Site Scripting (XSS)

Software Tribute Testimonials Type Plugin Vulnerable versions = 1.0.4 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-10886 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 9bc229fde884 Credits Peter Thaleikis...

SUSE CVE-2018-10886

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: this candidate is not about any specific product, protocol, or design, that falls into the scope of the assigning CNA. Notes: None...

CVE-2019-10886

creationtimestamp| type| source ---|---|--- 2022-02-07 08:33:04+00:00| seen| Telegram/VLuWTxVPeTXTjrt3CwMYrEbk9N1DbNTHWgtyh-2bTaT...

SUSE: Security Advisory (SUSE-SU-2018:2789-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:2866-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:1351-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:2838-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : ant (openSUSE-2020-703)

This update for ant fixes the following issues : Security issue fixed : - CVE-2018-10886: Fixed a path traversal vulnerability in malformed zip file paths, which allowed arbitrary file writes and could potentially lead to code execution bsc1100053. Non-security issues fixed : - Add rhino to the...

openSUSE: Security Advisory for ant (openSUSE-SU-2020:0703-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2018-21075

An issue was discovered on Samsung mobile devices with N7.x and O8.x software. The Call+ application can load classes from an unintended path, leading to Code Execution. The Samsung ID is SVE-2017-10886 April 2018...

Design/Logic Flaw

An issue was discovered on Samsung mobile devices with N7.x and O8.x software. The Call+ application can load classes from an unintended path, leading to Code Execution. The Samsung ID is SVE-2017-10886 April 2018...

CVE-2018-21075

An issue was discovered on Samsung mobile devices with N7.x and O8.x software. The Call+ application can load classes from an unintended path, leading to Code Execution. The Samsung ID is SVE-2017-10886 April 2018...

CVE-2020-10886

The CVE affects TP-Link Archer A7 AC1750 routers (Firmware 190726) and a component called tmpServer that listens on TCP port 20002. The root cause is improper validation of a user-supplied string before it is used to execute a system call, enabling remote attackers to execute arbitrary code with ...

CVE-2016-10886

The wp-editor plugin before 1.2.6 for WordPress has incorrect permissions...