CVE-2026-1516

creationtimestamp| type| source ---|---|--- 2026-04-09 00:35:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mizks6xl5325 2026-04-09 12:45:30+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mj2tm4jzoj2z 2026-04-09 20:00:00+00:00| seen|...

CVE-2026-1516 Improper Control of Generation of Code ('Code Injection') in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 18.0.0 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that in Code Quality reports could have allowed an authenticated user to leak IP addresses of users viewing the report via specially crafted content...

EUVD-2026-1516

Cross-Site Scripting in phpgurukul Hostel Management System v2.1 user-provided complaint fields Explain the Complaint submitted via /register-complaint.php are stored and rendered unescaped in the admin viewer /admin/complaint-details.php?cid=. When an administrator opens the complaint, injected...

EUVD-2008-7256

Malware in sbrugna...

ECHO-2496-4F14-1516

Bulletin has no description...

CVE-2025-1516

An issue has been discovered in GitLab CE/EE affecting all versions from 8.7 before 17.10.8, 17.11 before 17.11.4, and 18.0 before 18.0.2. Improper input validation in Tokens Names could be used to trigger a denial of service...

CVE-2025-1516 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 8.7 before 17.10.8, 17.11 before 17.11.4, and 18.0 before 18.0.2. Improper input validation in Tokens Names could be used to trigger a denial of service...

CVE-2025-1516 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 8.7 before 17.10.8, 17.11 before 17.11.4, and 18.0 before 18.0.2. Improper input validation in Tokens Names could be used to trigger a denial of service...

GitLab 8.7 < 17.10.8 / 17.11 < 17.11.4 / 18.0 < 18.0.2 (CVE-2025-1516)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions from 8.7 before 17.10.8, 17.11 before 17.11.4, and 18.0 before 18.0.2. Improper input validation in Tokens Names could be used to...

CVE-2001-1516

Cross-site scripting XSS vulnerability in phpReview 0.9.0 rc2 and earlier allows remote attackers to inject arbitrary web script or HTML via user-submitted reviews...

Linux Distros Unpatched Vulnerability : CVE-2016-1516

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code. CVE-2016-1516 Note that Nessus relies on the presence of the package as...

RHEL 9 : libxml2 (RHSA-2025:1516)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:1516 advisory. The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml: use-after-free in...

CVE-2017-1516

creationtimestamp| type| source ---|---|--- 2025-02-06 02:44:20+00:00| seen| Telegram/ZzxfANaUQ5xKtZQQLsERfOdlYjEeH4Jx7IxeGuYgkvBHuWJ...

RHEL 7 : opencv (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - opencv: out-of-bounds write error in the function FillColorRow4 CVE-2017-12606 - OpenCV 3.0.0 has a doubl...

RHEL 6 : opencv (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - opencv: out-of-bounds write error in the function FillColorRow4 CVE-2017-12606 - OpenCV 3.0.0 has a doubl...

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (python-twisted) (RHSA-2024:1516)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:1516 advisory. Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat servers, mail...

CVE-2024-1516

creationtimestamp| type| source ---|---|--- 2024-03-14 20:01:36+00:00| seen| https://t.me/ctinow/208083 2025-02-14 10:04:00+00:00| seen| Telegram/trnhnR4petjm4WCeB3ZhVUuENPh2M0rBdUV3lP8tPvwP61z...

CVE-2024-1516

The WP eCommerce plugin for WordPress is vulnerable to unauthorized arbitrary post creation due to a missing capability check on the checkforsaaspush function in all versions up to, and including, 3.15.1. This makes it possible for unauthenticated attackers to create arbitrary posts with arbitrar...

CVE-2024-1516

CVE-2024-1516 : WP eCommerce for WordPress suffers unauthorized arbitrary post creation due to a missing capability check in check_for_saas_push() in all versions up to 3.15.1. The vulnerability is exploitable by unauthenticated actors to create posts with arbitrary content. Technical details spe...

WordPress WP eCommerce Plugin <= 3.15.1 is vulnerable to Broken Access Control

Software WP eCommerce Type Plugin Vulnerable versions = 3.15.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1516 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 7c529550d022 Credits Krzysztof Zając Required privilege...