IP2Location Country Blocker < 2.38.9 - Unauthenticated Information Disclosure

IP2Location Country Blocker plugin for WordPress up to version 2.38.8 contains a regular information exposure caused by missing capability checks on admininit, letting unauthenticated attackers view plugin settings, exploit requires no special conditions. id: CVE-2025-1361 info: name: IP2Location...

Huawei EulerOS: Security Advisory for gnupg2 (EulerOS-SA-2026-1361)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2026-1361

creationtimestamp| type| source ---|---|--- 2026-01-27 04:27:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdew7atfsn2h 2026-01-27 05:19:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdez3nkrse2g 2026-02-17 11:00:00+00:00| seen|...

CVE-2026-1361

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2026-1361 ASDA-Soft Stack-based Buffer Overflow Vulnerability

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2026-1361

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2009-1361

dig.php in GScripts.net DNS Tools allows remote attackers to execute arbitrary commands via shell metacharacters in the host parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2023-1361

creationtimestamp| type| source ---|---|--- 2025-02-27 19:25:56+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5757...

CVE-2025-1361

creationtimestamp| type| source ---|---|--- 2025-02-22 09:23:26+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5017 2025-02-22 10:30:37+00:00| seen| Telegram/gYqeR3aOJ8gUMoHSV0An9Ndm0lBx4n9zq14p24Bw7aoMGdQ 2025-02-22 11:52:25+00:00| seen|...

CVE-2025-1361

CVE-2025-1361 affects the IP2Location Country Blocker WordPress plugin. The vulnerability stems from missing capability checks in admin_init(), enabling unauthenticated attackers to view the plugin’s settings. It affects all versions up to and including 2.38.8. The connected Red Hat and Wordfence...

CVE-2025-1361 IP2Location Country Blocker <= 2.38.8 - Missing Authorization to Unauthenticated Information Exposure via admin_init Function

The IP2Location Country Blocker plugin for WordPress is vulnerable to Regular Information Exposure in all versions up to, and including, 2.38.8 due to missing capability checks on the admininit function. This makes it possible for unauthenticated attackers to view the plugin's settings...

CVE-2025-1361 IP2Location Country Blocker <= 2.38.8 - Missing Authorization to Unauthenticated Information Exposure via admin_init Function

The IP2Location Country Blocker plugin for WordPress is vulnerable to Regular Information Exposure in all versions up to, and including, 2.38.8 due to missing capability checks on the admininit function. This makes it possible for unauthenticated attackers to view the plugin's settings...

CVE-2024-38811

creationtimestamp| type| source ---|---|--- 2024-09-03 13:17:36+00:00| seen| https://t.me/cvedetector/4673 2024-09-04 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1361...

RHEL 8 : Red Hat OpenShift Data Foundation 4.10.0 RPM (RHSA-2022:1361)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1361 advisory. Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Re...

CVE-2024-1361

The Colibri Page Builder plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.253. This is due to missing or incorrect nonce validation on the apiCall function. This makes it possible for unauthenticated attackers to call a limited set of...

WordPress Colibri Page Builder Plugin <= 1.0.253 is vulnerable to Cross Site Request Forgery (CSRF)

Software Colibri Page Builder Type Plugin Vulnerable versions = 1.0.253 Fixed in 1.0.260 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-1361 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ba2ec46e6e74 Credits Lucio Sá...

CVE-2023-1361

SQL Injection in GitHub repository unilogies/bumsys prior to v2.0.2...

CVE-2023-1361

CVE-2023-1361 : SQL Injection in the open-source project unilogies/bumsys prior to v2.0.2. The vulnerability stems from core/ajax/ajax_data.php where customer_id is sanitized but interpolated into an unquoted numeric context, allowing injected SQL (example PoC in Huntr shows a time-based sleep). ...

CVE-2023-1361 SQL Injection in unilogies/bumsys

SQL Injection in GitHub repository unilogies/bumsys prior to v2.0.2...

CVE-2023-1361 SQL Injection in unilogies/bumsys

SQL Injection in GitHub repository unilogies/bumsys prior to v2.0.2...