Amazon Linux 2023 : golist (ALAS2023-2026-1382)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1382 advisory. net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processe...

Linux Distros Unpatched Vulnerability : CVE-2014-1382

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitra...

CVE-2010-1382

Cross-site scripting XSS vulnerability in Wiki Server in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote authenticated users to inject arbitrary web script or HTML via crafted Wiki content, related to lack of a charset field...

CVE-2025-1382

The Contact Us By Lord Linus WordPress plugin through 2.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

CVE-2025-1382

creationtimestamp| type| source ---|---|--- 2025-03-09 06:38:06+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6956 2025-03-09 06:55:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljwhfyn4k526 2025-03-09 09:35:11+00:00| seen|...

CVE-2025-1382

The Contact Us By Lord Linus WordPress plugin through 2.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

CVE-2025-1382 Contact Us By Lord Linus <= 2.6 - Admin+ Stored XSS via CSRF

The Contact Us By Lord Linus WordPress plugin through 2.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

CVE-2025-1382

CVE-2025-1382 affects the WordPress plugin Contact Us By Lord Linus (

Linux Distros Unpatched Vulnerability : CVE-2015-1382

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - parsers.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service invalid read and crash via vectors related to an HTTP time header...

SUSE SLES15 Security Update : kernel (SUSE-SU-2025:0201-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0201-1 advisory. The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: -...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver bsc1203332. CVE-2022-48742: rtnetlink: make sure to refresh masterdev/mops in...

SUSE SLES12 Security Update : kernel (Live Patch 48 for SLE 12 SP5) (SUSE-SU-2024:1382-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1382-1 advisory. - A heap out-of-bounds write vulnerability in the Linux kernel's Linux Kernel Performance Events perf component can be exploited to achieve loc...

Ubuntu: Security Advisory (USN-6739-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-6740-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-1382

creationtimestamp| type| source ---|---|--- 2024-03-07 10:27:04+00:00| seen| https://t.me/ctinow/202259...

CVE-2024-1382

The Restaurant Reservations WordPress plugin is vulnerable to Local File Inclusion in versions ≤ 1.9 via the nd_rst_layout attribute of the nd_rst_search shortcode. Authenticated attackers with Contributor+ access can include and execute arbitrary PHP files on the server, potentially bypassing ac...

WordPress Restaurant Reservations Plugin <= 1.9 is vulnerable to Local File Inclusion

Software Restaurant Reservations Type Plugin Vulnerable versions = 1.9 Fixed in 2.0 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-1382 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 9092a13ced79 Credits Lucio Sá Required privilege Contributor...

CVE-2019-1382

creationtimestamp| type| source ---|---|--- 2024-02-11 15:06:50+00:00| seen| https://t.me/ctinow/182806...

Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: tun: avoid double free in tunfreenetdev CVE-2022-4744 kernel: net/sched: multiple vulnerabilities CVE-2023-3609, CVE-2023-3611, CVE-2023-4128, CVE-2023-4206, CVE-2023-4207, CVE-2023-4208...

SUSE-SU-2023:1811-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-5753: Fixed spectre V1 vulnerability on netlink bsc1209547. - CVE-2017-5753: Fixed spectre vulnerability in prlimit bsc1209256. - CVE-2021-3923: Fixed...