CVE-2026-1670

creationtimestamp| type| source ---|---|--- 2026-02-17 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-048-04 2026-02-17 23:19:40+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mf3pb6b3wh26 2026-02-17 23:20:21+00:00| seen|...

MiracleLinux 4 : firefox-17.0.6-1.0.1.AXS4, xulrunner-17.0.6-2.0.1.AXS4 (AXSA:2013-446:04)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-446:04 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security issues fixed with this releas...

Mozilla Thunderbird < 17.0.6

The version of Thunderbird installed on the remote Windows host is prior to 17.0.6. It is, therefore, affected by a vulnerability as referenced in the mfsa2013-42 advisory. - Call content level constructor as if from a chrome/privileged pageCVE-2013-1670 CVE-2013-1670 Note that Nessus has not...

Mozilla Firefox ESR < 17.0.6

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 17.0.6. It is, therefore, affected by a vulnerability as referenced in the mfsa2013-42 advisory. - Call content level constructor as if from a chrome/privileged pageCVE-2013-1670 CVE-2013-1670 Note that Nessus h...

Mozilla Firefox < 21.0

The version of Firefox installed on the remote Windows host is prior to 21.0. It is, therefore, affected by a vulnerability as referenced in the mfsa2013-42 advisory. - Call content level constructor as if from a chrome/privileged pageCVE-2013-1670 CVE-2013-1670 Note that Nessus has not tested fo...

Mozilla Thunderbird ESR < 17.0.6

The version of Thunderbird ESR installed on the remote macOS or Mac OS X host is prior to 17.0.6. It is, therefore, affected by a vulnerability as referenced in the mfsa2013-42 advisory. - Call content level constructor as if from a chrome/privileged pageCVE-2013-1670 CVE-2013-1670 Note that Ness...

Mozilla Firefox ESR < 17.0.6

The version of Firefox ESR installed on the remote Windows host is prior to 17.0.6. It is, therefore, affected by a vulnerability as referenced in the mfsa2013-42 advisory. - Call content level constructor as if from a chrome/privileged pageCVE-2013-1670 CVE-2013-1670 Note that Nessus has not...

EUVD-2013-2315

Malware in sbrugna...

EUVD-2010-1670

Malware in sbrugna...

CVE-2010-1670

Mahara before 1.0.15, 1.1.x before 1.1.9, and 1.2.x before 1.2.5 has improper configuration options for authentication plugins associated with logins that use the single sign-on SSO functionality, which allows remote attackers to bypass authentication via an empty password. NOTE: some of these...

CVE-2025-1670

The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'cid' parameter in all versions up to, and including, 2.2.16 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This make...

CVE-2025-1670

creationtimestamp| type| source ---|---|--- 2025-03-15 03:48:58+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7653 2025-03-15 04:56:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkfdkycxut2l 2025-03-15 06:55:46+00:00| seen| https://t.me/cvedetector/20...

CVE-2025-1670

CVE-2025-1670 describes an authenticated SQL injection in the School Management System – WPSchoolPress WordPress plugin (

CVE-2025-1670 School Management System – WPSchoolPress <= 2.2.16 - Authenticated (Parent+) SQL Injection

The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'cid' parameter in all versions up to, and including, 2.2.16 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This make...

Linux Distros Unpatched Vulnerability : CVE-2024-1670

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Mojo in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromiu...

Linux Distros Unpatched Vulnerability : CVE-2013-1670

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Chrome Object Wrapper COW implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x...

Siemens SCALANCE W700 Use After Free (CVE-2023-1670)

A flaw use after free in the Linux kernel Xircom 16-bit PCMCIA PC- card Ethernet driver was found.A local user could use this flaw to crash the system or potentially escalate their privileges on the system. This plugin only works with Tenable.ot. Please visit...

Oracle Linux 9 : bind9.18 (ELSA-2025-1670)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-1670 advisory. - Fix CVE-2024-11187 bind: bind9: Many records in the additional section cause CPU exhaustion Tenable has extracted the preceding description block...

openSUSE Security Advisory (openSUSE-SU-2024:0084-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

FreeBSD : electron{27,28} -- Use after free in Mojo (3567456a-6b17-41f7-ba7f-5cd3efb2b7c9)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 3567456a-6b17-41f7-ba7f-5cd3efb2b7c9 advisory. - Use after free in Mojo in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to potential...