CVE-2026-1560

creationtimestamp| type| source ---|---|--- 2026-02-11 09:00:34+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mel4hgvx7e2a 2026-02-11 09:00:37+00:00| seen| https://infosec.exchange/users/offseq/statuses/116051177122807179 2026-02-11 09:59:59+00:00| seen|...

EUVD-2026-1560

Deserialization of Untrusted Data vulnerability in Tribulant Software Newsletters newsletters-lite allows Object Injection.This issue affects Newsletters: from n/a through = 4.11...

CVE-2025-1560

The WOW Entrance Effects WEE! plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wee' shortcode in all versions up to, and including, 0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticat...

CVE-2001-1560

Win32k.sys aka Graphics Device Interface GDI in Windows 2000 and XP allows local users to cause a denial of service system crash by calling the ShowWindow function after receiving a WMNCCREATE message...

CVE-2025-1560

creationtimestamp| type| source ---|---|--- 2025-02-28 09:27:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5866 2025-02-28 11:10:17+00:00| seen| https://t.me/cvedetector/19130...

CVE-2025-1560

The WOW Entrance Effects WEE! plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wee' shortcode in all versions up to, and including, 0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticat...

CVE-2025-1560

CVE-2025-1560 (WOW Entrance Effects WEE!) is a stored XSS vulnerability in the WordPress plugin WOW Entrance Effects (WEE!) up to version 0.1. The issue stems from insufficient input sanitization and output escaping in the plugin’s wee shortcode attributes, allowing authenticated attackers with c...

CVE-2025-1560 WOW Entrance Effects (WEE!) <= 0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The WOW Entrance Effects WEE! plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wee' shortcode in all versions up to, and including, 0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticat...

CVE-2024-20085

In power, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08944204; Issue ID: MSV-1560...

CVE-2024-20085

In power, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08944204; Issue ID: MSV-1560...

CVE-2024-1560

creationtimestamp| type| source ---|---|--- 2024-04-18 05:53:41+00:00| seen| https://t.me/arpsyndicate/4699...

a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +342 more potentially affected by CVE-2024-1560 via mlflow (>=0.8.2 <=2.9.2)

mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 - apache-submarine =0.6.0 and more Source cves: CVE-2024-1560 Source advisory: OSV:GHSA-5MVJ-WMGJ-7Q8C...

CVE-2024-1560

A path traversal vulnerability exists in the mlflow/mlflow repository, specifically within the artifact deletion functionality. Attackers can bypass path validation by exploiting the double decoding process in the deleteartifactmlflowartifacts handler and localfileuritopath function, allowing for...

CVE-2024-1560

CVE-2024-1560 affects mlflow/mlflow prior to 2.9.2, in the artifact deletion path. A double decoding flaw in _delete_artifact_mlflow_artifacts and local_file_uri_to_path, via an extra unquote in delete_artifacts, allows path traversal and deletion of arbitrary server directories. Impact: high, wi...

CVE-2024-1560 Path Traversal Vulnerability in mlflow/mlflow

A path traversal vulnerability exists in the mlflow/mlflow repository, specifically within the artifact deletion functionality. Attackers can bypass path validation by exploiting the double decoding process in the deleteartifactmlflowartifacts handler and localfileuritopath function, allowing for...

CVE-2024-1560 Path Traversal Vulnerability in mlflow/mlflow

A path traversal vulnerability exists in the mlflow/mlflow repository, specifically within the artifact deletion functionality. Attackers can bypass path validation by exploiting the double decoding process in the deleteartifactmlflowartifacts handler and localfileuritopath function, allowing for...

CVE-2023-1560

creationtimestamp| type| source ---|---|--- 2023-03-22 15:35:57+00:00| seen| https://t.me/cibsecurity/60446...

CVE-2023-1560

A vulnerability, which was classified as problematic, has been found in TinyTIFF 3.0.0.0. This issue affects some unknown processing of the file tinytiffreader.c of the component File Handler. The manipulation leads to buffer overflow. Attacking locally is a requirement. The exploit has been...

CVE-2023-1560

CVE-2023-1560 affects TinyTIFF 3.0.0.0, specifically the tinytiffreader.c File Handler. The vulnerability is a buffer overflow caused by an issue in processing, with local attack requirements and a publicly disclosed exploit. Multiple connected sources consistently identify the flaw but do not sp...

CVE-2021-1560

creationtimestamp| type| source ---|---|--- 2022-12-10 08:45:47+00:00| published-proof-of-concept| Telegram/QEOkRcTJvdEamMVgONF5wiXyXbO3KNYpCPHg3oGAS7BLk...