WordPress Videos sync PDF <=1.7.4 - Local File Inclusion

WordPress Videos sync PDF 1.7.4 and prior does not validate the p parameter before using it in an include statement, which could lead to local file inclusion. id: CVE-2022-1392 info: name: WordPress Videos sync PDF =1.7.5 or apply the vendor-provided patch to mitigate the vulnerability. reference...

Huawei EulerOS: Security Advisory for gnupg2 (EulerOS-SA-2026-1392)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux 2023 : libsoup, libsoup-devel (ALAS2023-2026-1392)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1392 advisory. A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other applications for network communication. When processing extremely long passwords, an...

EUVD-2024-50535

Malicious code in bioql PyPI...

EUVD-2023-44338

Malicious code in bioql PyPI...

PT-2025-36925

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The issue involves the use of default credentials. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

CVE-2022-1392

The Videos sync PDF WordPress plugin through 1.7.4 does not validate the p parameter before using it in an include statement, which could lead to Local File Inclusion issues...

CVE-2020-1392

An elevation of privilege vulnerability exists when the Windows Delivery Optimization service improperly handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1388, CVE-2020-1394, CVE-2020-1395...

CVE-2025-1392

A vulnerability has been found in D-Link DIR-816 1.01TO and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /cgi-bin/webproc?getpage=html/index.html&var:menu=24gwlan&var:page=24Gbasic. The manipulation of the argument SSID leads to cross site...

CVE-2025-1392

creationtimestamp| type| source ---|---|--- 2025-02-17 15:32:12+00:00| seen| https://infosec.exchange/users/cve/statuses/114019947766891173 2025-02-17 16:16:23+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lif5gasg4d23 2025-02-17 18:13:36+00:00| seen|...

CVE-2025-1392 D-Link DIR-816 index.html cross site scripting

A vulnerability has been found in D-Link DIR-816 1.01TO and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /cgi-bin/webproc?getpage=html/index.html&var:menu=24gwlan&var:page=24Gbasic. The manipulation of the argument SSID leads to cross site...

CVE-2024-12013

A CWE-1392 “Use of Default Credentials” was discovered affecting the 130.8005 TCP/IP Gateway running firmware version 12h. The device exposes an FTP server with default and easy-to-guess admin credentials. A remote attacker capable of interacting with the FTP server could gain access and perform...

RHEL 9 : ovn22.12 (RHSA-2024:1392)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1392 advisory. OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add native...

CVE-2024-1392

CVE-2024-1392 affects the WordPress plugin Elementor Addon Elements (versions

CVE-2019-1392

creationtimestamp| type| source ---|---|--- 2024-02-11 15:06:57+00:00| seen| https://t.me/ctinow/182812...

EnBw SENEC Legacy Storage Box Default Credentials

Advisory ID: Ph0s-2023-004 Product: EnBw - SENEC legacy storage box: V1-V3 Manufacturer: SENEC - a part of EnBw Affected Versions: Firmware: all as of 2023-06-19 Tested Versions: current Vulnerability Type: CWE-1392: Use of Default Credentials Risk Level: CVSS v3.1 Vector:...

CVE-2023-3703

Proscend Advice ICR Series routers FW version 1.76 - CWE-1392: Use of Default Credentials...

Default credentials

Proscend Advice ICR Series routers FW version 1.76 - CWE-1392: Use of Default Credentials...

CVE-2023-3703 Proscend Advice ICR Series routers fw version 1.76

Proscend Advice ICR Series routers FW version 1.76 - CWE-1392: Use of Default Credentials...

CVE-2023-1392

creationtimestamp| type| source ---|---|--- 2023-03-14 17:23:37+00:00| seen| https://t.me/cibsecurity/59977 2025-02-27 16:26:16+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5718...