CVE-2026-1619

creationtimestamp| type| source ---|---|--- 2026-02-13 14:18:18+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3meqp5gg2vd2o...

CVE-2026-1619

Authorization Bypass Through User-Controlled Key vulnerability in Universal Software Inc. FlexCity/Kiosk allows Exploitation of Trusted Identifiers.This issue affects FlexCity/Kiosk: from 1.0 before 1.0.36...

MiracleLinux 3 : gnutls-1.4.1-10.1.0.1.AXS3 (AXSA:2013-170:02)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-170:02 advisory. GnuTLS is a project that aims to develop a library which provides a secure layer, over a reliable transport layer. Currently the GnuTLS library implements the...

CVE-2025-1619

The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-1619

Kaspersky has fixed a security issue in the Kaspersky Security 8.0 for Linux Mail Server. The issue was that an attacker could potentially force an administrator to click on a malicious link to perform unauthorized actions...

CVE-2025-1619

creationtimestamp| type| source ---|---|--- 2025-03-16 06:46:13+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7705 2025-03-16 08:00:53+00:00| seen| https://t.me/cvedetector/20403...

CVE-2025-1619

The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2025-1619 GDPR Cookie Compliance < 4.15.7 - Admin+ Stored XSS

The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2025-1619

CVE-2025-1619 affects GDPR Cookie Compliance (WordPress plugin) up to version 4.15.7. The issue is Admin+ stored XSS due to insufficient sanitization/escaping of settings, potentially exploitable in multisite configurations where unfiltered_html is disallowed. Red Hat and Patchstack corroborate t...

CVE-2025-1619 GDPR Cookie Compliance < 4.15.7 - Admin+ Stored XSS

The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

Linux Distros Unpatched Vulnerability : CVE-2022-1619

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based Buffer Overflow in function cmdlineerasechars in GitHub repository vim/vim prior to 8.2.4899. This vulnerabilities are capable of crashing software,...

Cisco Data Center Network Manager Unauthenticated File Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco Data Center Network Manager Unauthenticated File Download', 'Description' = %q DCNM exposes a servlet to download files on...

RHEL 8 : vim (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - vim: buffer overflow CVE-2020-20703 - vim: heap-buffer-overflow in cmdlineerasechars of exgetln.c...

CVE-2024-1619

creationtimestamp| type| source ---|---|--- 2024-02-29 11:31:55+00:00| seen| https://t.me/ctinow/196524 2024-02-29 11:31:56+00:00| seen| https://t.me/ctinow/196525...

CVE-2024-1619

CVE-2024-1619 affects Kaspersky Security 8.0 for Linux Mail Server. The vulnerability allows an attacker to coerce an administrator into clicking a malicious link, enabling unauthorized actions. Affected component/process: Kaspersky Security 8.0 for Linux Mail Server; root cause details are not p...

CVE-2024-1619

Kaspersky has fixed a security issue in the Kaspersky Security 8.0 for Linux Mail Server. The issue was that an attacker could potentially force an administrator to click on a malicious link to perform unauthorized actions...

Wago Controller with CODESYS 2.3 Runtime Denial-of-Service (CVE-2023-1619)

Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a malformed packet. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...

CVE-2023-1619

Multiple WAGO devices in multiple versions may allow an authenticated remote attacker with high privileges to DoS the device by sending a malformed packet...

CVE-2023-1619

WAGO 750 controllers (CODESYS 2.3 Runtime) are affected by CVE-2023-1619. An authenticated, high-privilege attacker can cause a DoS by sending specially crafted malformed packets due to insufficient input validation. Root cause and details are supported by PT-2023-3435 (insufficient input validat...

Researchers Expose New Severe Flaws in Wago and Schneider Electric OT Products

Three security vulnerabilities have been disclosed in operational technology OT products from Wago and Schneider Electric. The flaws, per Forescout, are part of a broader set of shortcomings collectively called OT:ICEFALL, which now comprises a total of 61 issues spanning 13 different vendors...