CVE-2025-12070

The ViaAds plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.2. This is due to missing nonce validation on the ViaAdspluginHandler function. This makes it possible for unauthenticated attackers to modify the plugin's API key and cookie...

CVE-2024-12070

A Denial of Service DoS vulnerability exists in the file upload feature of haotian-liu/llava, specifically in Release v1.2.0 LLaVA-1.6. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. By sending a payload with an excessively large...

CVE-2024-12070 Denial of Service in haotian-liu/llava

A Denial of Service DoS vulnerability exists in the file upload feature of haotian-liu/llava, specifically in Release v1.2.0 LLaVA-1.6. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. By sending a payload with an excessively large...

CVE-2020-12070

Summary: The WordPress plugin Advanced Woo Search (versions up to 1.99) exposes a sensitive information disclosure vulnerability. According to multiple connected sources, every ajax search request over the sql field in includes/class-aws-search.php can disclose sensitive data. The issue is docume...

CVE-2017-12070

Unsigned versions of the DLLs distributed by the OPC Foundation may be replaced with malicious code...

CVE-2017-12070

Technical details about CVE-2017-12070 are not publicly provided in the supplied documents. No affected products, versions, or remediation are specified here. Monitor for updates from official advisories.