CVE-2026-37537

collin80/Open-SAE-J1939 thru commit 744024d4306bc387857dfce439558336806acb06 2023-03-08 contains an integer underflow leading to out-of-bounds write in Transport Protocol Data Transfer handling. At line 23: uint8t index = data0 - 1. When data0 sequence number from CAN frame is 0, index underflows...

MAL-2026-1785 Malicious code in libxmljs8 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 404e110268457c33fbe28e62b22c0233f5dbf4b3b9f1feec6ff2b457e0fa244f The package libxmljs8 was found to contain malicious code...

MiracleLinux 8 : vim-8.0.1763-19.el8.4 (AXSA:2023-4598:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4598:01 advisory. vim: Out-of-bounds Write CVE-2022-1785 vim: out-of-bounds write in vimregsubboth in regexp.c CVE-2022-1897 vim: buffer over-read in utfptr2char in...

TencentOS Server 3: vim (TSSA-2022:0150)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0150 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

CVE-2020-1785

Mate 10 Pro;Honor V10;Honor 10;Nova 4 smartphones have a denial of service vulnerability. The system does not properly check the status of certain module during certain operations, an attacker should trick the user into installing a malicious application, successful exploit could cause reboot of...

CVE-2013-1785

Cross-site scripting XSS vulnerability in the 3 slide gallery in the Premium Responsive theme before 7.x-1.6 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...

Alibaba Cloud Linux 3 : 0150: vim (ALINUX3-SA-2022:0150)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0150 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-1785: Out-of-bounds Write in GitH...

CVE-2025-1785

creationtimestamp| type| source ---|---|--- 2025-03-13 07:43:27+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7403 2025-03-13 11:26:18+00:00| seen| https://t.me/cvedetector/20204...

CVE-2025-1785 Download Manager <= 3.3.08 - Authenticated (Author+) Path Traversal to Limited File Overwrite

The Download Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.08 via the 'wpdmnewfile' action. This makes it possible for authenticated attackers, with Author-level access and above, to overwrite select file types outside of the originall...

CVE-2025-1785 Download Manager <= 3.3.08 - Authenticated (Author+) Path Traversal to Limited File Overwrite

The Download Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.3.08 via the 'wpdmnewfile' action. This makes it possible for authenticated attackers, with Author-level access and above, to overwrite select file types outside of the originall...

Linux Distros Unpatched Vulnerability : CVE-2022-1785

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.4977. CVE-2022-1785 Note that Nessus relies on the presence of the package as reported by the...

CentOS 7 : X.Org server (RHSA-2024:1785)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1785 advisory. - A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIGetSelectedEvents function. This issue occurs when byte-swapped...

Oracle Linux 7 : X.Org / server (ELSA-2024-1785)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-1785 advisory. - Fix regression caused by the fix for CVE-2024-31083 - CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and CVE-2024-31083 Resolves:...

RHEL 7 : X.Org server (RHSA-2024:1785)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1785 advisory. X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical use...

CVE-2024-1785

The Contests by Rewards Fuel plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.62. This is due to missing or incorrect nonce validation on the ajaxhandler function. This makes it possible for unauthenticated attackers to update the plugin's...

CVE-2020-1785

creationtimestamp| type| source ---|---|--- 2024-03-19 12:41:39+00:00| seen| https://t.me/ctinow/211405...

Rocky Linux 9 : vim (RLSA-2022:5942)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:5942 advisory. - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.4977. CVE-2022-1785 - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2...

Amazon Linux AMI : wireshark (ALAS-2023-1785)

The version of wireshark installed on the remote host is prior to 1.8.10-25.24. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1785 advisory. Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in a...

Huawei EulerOS: Security Advisory for lxc (EulerOS-SA-2023-1785)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-5995-1: Vim vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to cras...