Security Bulletin: IBM QRadar SIEM is vulnerable to information disclosures and cross-site scripting

Summary Several potential Cross-Site Scripting and Information Disclosure issues addressed in IBM QRadar SIEM 7.5.0 UP15 Vulnerability Details CVEID:CVE-2025-13995 DESCRIPTION: IBM QRadar SIEM could allow an attacker with access to one tenant to access hostname data from another tenant's account...

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2026-1276)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2003-1276

Netfone.exe of NetTelephone 3.5.6 uses weak encryption for user PIN's and stores user account numbers in plaintext in the HKEYCURRENTUSER\Software\MediaRing.com\SDK\NetTelephone\settings registry key, which could allow local users to gain unauthorized access to NetTelephone accounts...

EUVD-2026-1276

The Drag and Drop Multiple File Upload – Contact Form 7 plugin for WordPress is vulnerable to limited upload of files with a dangerous type in all versions up to, and including, 1.3.9.2. This is due to the plugin not blocking .phar and .svg files. This makes it possible for unauthenticated...

CVE-2024-1276

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Content Ticker arrow attribute in all versions up to, and including, 5.9.8 due to insufficient input sanitization and outpu...

CVE-2025-1276

creationtimestamp| type| source ---|---|--- 2025-04-16 14:56:39+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12069...

CVE-2025-1276

CVE-2025-1276 : A maliciously crafted DWG file, when parsed by Autodesk applications, can trigger an Out-of-Bounds Write vulnerability. Impacted behavior includes a crash, data corruption, or arbitrary code execution in the context of the affected process. The root cause is an out-of-bounds write...

CVE-2022-1276

Out-of-bounds Read in mrbgetargs in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited...

GHSA-RQC4-2HC7-8C8V vulnerabilities

Vulnerabilities for packages: py3-cassandra-medusa, request-1276...

CVE-2024-53899 vulnerabilities

Vulnerabilities for packages: py3-cassandra-medusa, request-1276...

GHSA-8495-4G3G-X7PR vulnerabilities

Vulnerabilities for packages: kserve, airflow, dask-gateway, py3.10-vllm-cuda-11.8, py3-aiohttp, py3-cassandra-medusa, awx, checkov, request-1276...

GHSA-JWHX-XCG6-8XHJ vulnerabilities

Vulnerabilities for packages: kserve, airflow, dask-gateway, nemo, py3-cassandra-medusa, checkov, request-1276...

CVE-2024-1276

creationtimestamp| type| source ---|---|--- 2024-03-09 00:32:00+00:00| seen| https://t.me/ctinow/203688...

CVE-2024-1276

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Content Ticker arrow attribute in all versions up to, and including, 5.9.8 due to insufficient input sanitization and outpu...

CVE-2024-1276

CVE-2024-1276 affects the WordPress plugin Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders. All versions up to and including 5.9.8 are vulnerable to a Stored XSS via the Content Ticker arrow attribute caused by insufficient input sanitization and ou...

CVE-2023-1276

The CVE-2023-1276 entry concerns SUL1SS_shop, where SQL injection is caused by manipulation of the keyword argument in the file applicationmerch/controller/Order.php. The issue is exploitable remotely, and publicly disclosed exploits exist. Multiple sources consistently describe a high-severity, ...

RHEL 7 / 8 : OpenShift Container Platform 4.3.10 openshift (RHSA-2020:1276)

The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1276 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private clo...

openSUSE: Security Advisory for nbd (SUSE-SU-2022:1276-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2022-1276

Out-of-bounds Read in mrbgetargs in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited...

CVE-2022-1276

Out-of-bounds Read in mrbgetargs in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited...