MiracleLinux 7 : glibc-2.17-105.el7 (AXSA:2015-569:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-569:01 advisory. The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as t...

EUVD-2026-1781

A security issue was discovered in GNU Wget2 when handling Metalink documents. The application fails to properly validate file paths provided in Metalink elements. An attacker can abuse this behavior to write files to unintended locations on the system. This can lead to data loss or potentially...

Linux Distros Unpatched Vulnerability : CVE-2016-1781

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit in Apple iOS before 9.3 and Safari before 9.1 mishandles attachment URLs, which makes it easier for remote web servers to track users via unspecified...

CVE-2021-1781

A privacy issue existed in the handling of Contact cards. This was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A malicious application may be able to leak sensiti...

CVE-2004-1781

Info Touch Surfnet kiosk allows local users to crash Surfnet and access the underlying operating system via the CMDCREDITCARDCHARGE command...

CVE-2005-1781

Unknown vulnerability in SMTP authentication for MailEnable allows remote attackers to cause a denial of service crash...

CVE-2025-1781

There is a XXE in W3CSS Validator versions before cssval-20250226 that allows an attacker to use specially-crafted XML objects to coerce server-side request forgery SSRF. This could be exploited to read arbitrary local files if an attacker has access to exception messages...

CVE-2025-1781

There is a XXE in W3CSS Validator versions before cssval-20250226 that allows an attacker to use specially-crafted XML objects to coerce server-side request forgery SSRF. This could be exploited to read arbitrary local files if an attacker has access to exception messages...

Oracle Linux 8 : bind9.16 (ELSA-2024-1781)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-1781 advisory. - Prevent crashing at masterformat system test CVE-2023-6516 - Prevent increased CPU load on large DNS messages CVE-2023-4408 - Prevent assertion failu...

RHEL 8 : bind9.16 (RHSA-2024:1781)

"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1781 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named...

CVE-2024-1781

creationtimestamp| type| source ---|---|--- 2024-02-23 02:26:13+00:00| seen| https://t.me/ctinow/191370 2024-02-23 02:26:21+00:00| seen| https://t.me/ctinow/191375 2024-03-13 15:17:13+00:00| seen| https://t.me/ctinow/206769 2025-10-11 06:19:00+00:00| seen|...

CVE-2024-1781

CVE-2024-1781 affects Totolink X6000R AX3000 (firmware 9.4.0cu.852_20230719). The vulnerability is in the shttpd component’s setWizardCfg function (/cgi-bin/cstecgi.cgi) and allows command injection due to insufficient input validation. Public exploit guidance exists, and vendors were reportedly ...

Cisco FXOS and NX-OS Software Command Injection (CVE-2019-1781)

A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments passed to certain CLI...

Amazon Linux AMI : ImageMagick (ALAS-2023-1781)

The version of ImageMagick installed on the remote host is prior to 6.9.10.97-1.26. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1781 advisory. stack overflow when parsing malicious tiff image CVE-2023-3195 The upstream bug report describes this issue as...

K16865: GNU C Library (glibc) vulnerability CVE-2015-1781

Security Advisory Description A buffer overflow flaw was found in the way glibc's gethostbynamer and other related functions computed the size of a buffer when passed a misaligned buffer as input. An attacker able to make an application call any of these functions with a misaligned buffer could u...

SUSE CVE-2015-1781

Buffer overflow in the gethostbynamer and other unspecified NSS functions in the GNU C Library aka glibc or libc6 before 2.22 allows context-dependent attackers to cause a denial of service crash or execute arbitrary code via a crafted DNS response, which triggers a call with a misaligned buffer...

CVE-2022-1781

creationtimestamp| type| source ---|---|--- 2022-06-13 16:22:57+00:00| seen| https://t.me/cibsecurity/44285...

CVE-2022-1781

The postTabs WordPress plugin through 2.10.6 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, which also lead to Stored Cross-Site Scripting due to the lack of sanitisation and escaping...

CVE-2022-1781 postTabs <= 2.10.6 - Arbitrary Settings Update via CSRF to Stored XSS

The postTabs WordPress plugin through 2.10.6 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack, which also lead to Stored Cross-Site Scripting due to the lack of sanitisation and escaping...

CVE-2022-1781

The CVE-2022-1781 entry concerns the WordPress plugin postTabs (versions up to 2.10.6). The root cause is missing CSRF protection when updating settings, which can allow a logged-in attacker to perform a CSRF attack to change settings. This action can also lead to Stored XSS due to lack of saniti...