CVE-2026-1769

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Xerox CentreWare on Windows allows Stored XSS.This issue affects CentreWare: through 7.0.6. Consider upgrading Xerox® CentreWare Web® to v7.2.2.25 via the software available on Xerox.com...

MiracleLinux 3 : systemtap-1.3-4.AXS3.1 (AXSA:2011-223:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-223:01 advisory. SystemTap is an instrumentation system for systems running Linux 2.6. Developers can write instrumentation to collect data on the operation of the system...

Linux Distros Unpatched Vulnerability : CVE-2021-41458

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GPAC MP4Box v1.1.0, there is a stack buffer overflow at src/utils/error.c:1769 which leads to a denial of service vulnerability. CVE-2021-41458 Note that...

CVE-2021-1769

A logic issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A malicious attacker with arbitrary read and write capability may be able to bypas...

CVE-2025-1769

creationtimestamp| type| source ---|---|--- 2025-03-26 11:25:20+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8828 2025-03-26 13:53:15+00:00| seen| https://t.me/cvedetector/21165...

CVE-2025-1769 Product Import Export for WooCommerce <= 2.5.0 - Directory Traversal to Authenticated (Administrator+) Limited Arbitrary File Read via download_file Function

The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.5.0 via the downloadfile function. This makes it possible for authenticated attackers, with Administrator-level access and...

CVE-2025-1769

CVE-2025-1769 is a Directory Traversal vulnerability in the WordPress plugin “Product Import Export for WooCommerce – Import Export Product CSV Suite” affecting all versions up to and including 2.5.0. It allows an authenticated user with Administrator+ privileges to read arbitrary server log file...

Linux Distros Unpatched Vulnerability : CVE-2022-1769

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974. CVE-2022-1769 Note that Nessus relies on the presence of the package as reported by the vendor...

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-1769)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-1769

creationtimestamp| type| source ---|---|--- 2024-03-05 03:27:59+00:00| seen| https://t.me/ctinow/199855...

CVE-2024-1769 JM Twitter Cards <= 14 - Information Exposure via Meta Description

The JM Twitter Cards plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 14 via the meta description data. This makes it possible for unauthenticated attackers to view password protected post content when viewing the page source...

CVE-2024-1769

The CVE-2024-1769 entry concerns the JM Twitter Cards WordPress plugin. Public data confirms information exposure via the meta description that can let unauthenticated users view password-protected post content from the page source in versions up to 12. The vulnerability is documented across mult...

CVE-2024-1769 JM Twitter Cards <= 14 - Information Exposure via Meta Description

The JM Twitter Cards plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 14 via the meta description data. This makes it possible for unauthenticated attackers to view password protected post content when viewing the page source...

Cisco NX-OS Software Line Card Command Injection Vulnerability (CVE-2019-1769)

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands on the underlying Linux operating system of an attached line card with the privilege level of root. The vulnerability is due to insufficient...

Amazon Linux AMI : glib2 (ALAS-2023-1769)

The version of glib2 installed on the remote host is prior to 2.36.3-5.25. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1769 advisory. PCRE before 8.38 mishandles the interaction of lookbehind assertions and mutually recursive subpatterns, which allows remote...

RHEL 9 : openvswitch2.17 (RHSA-2023:1769)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1769 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security Fixe...

CVE-2023-1769

CVE-2023-1769 affects SourceCodester Grade Point Average GPA Calculator 1.0. The flaw resides in an unknown function of the file index.php, where manipulating the page parameter with the input php://filter/read=convert.base64-encode/resource=grade_table causes information disclosure. The vulnerab...

CBL Mariner 2.0 Security Update: vim (CVE-2022-1769)

The version of vim installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-1769 advisory. - Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974. CVE-2022-1769 Note that Nessus has not tested f...

Security Bulletin: Ineffective Cross Site Request Forgery (CSRF) protection in IBM Business Process Manager (BPM) (CVE-2017-1769)

Summary The optional Cross Site Request Forgery CSRF protection feature using Referer header allow listing is ineffective in IBM BPM V8.6.0.0. The check is effectively skipped. Vulnerability Details CVEID: CVE-2017-1769 DESCRIPTION: IBM Business Process Manager is vulnerable to cross-site request...

SUSE CVE-2010-1763

Unspecified vulnerability in WebKit in Apple iTunes before 9.2 on Windows has unknown impact and attack vectors, a different vulnerability than CVE-2010-1387 and CVE-2010-1769...