CVE-2026-1838

Affected software: Hostel plugin for WordPress (versions up to 1.1.6). Vulnerability: Reflected Cross-Site Scripting via the 'shortcode_id' parameter due to insufficient input sanitization and output escaping. Impact (as stated): Unauthenticated attackers can inject arbitrary web scripts into pag...

MAL-2026-1838 Malicious code in react-router-on-navigation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51cdeb16aaf568ca4d20ada611c1d6ac957f95f244c9f86b0bfcc64bf76253d4 The package react-router-on-navigation was found to contain malicious code...

EUVD-2026-1838

Malicious code in amdocs-core npm...

CVE-2025-1838

IBM Cloud Pak for Business Automation 24.0.0 and 24.0.1 through 24.0.1 IF001 Authoring allows an authenticated user to bypass client-side data validation in an authoring user interface which could cause a denial of service...

EUVD-2016-1838

Malware in sbrugna...

CVE-2021-1838

This issue was addressed with improved checks. This issue is fixed in iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to arbitrary code execution...

CVE-2025-1838

creationtimestamp| type| source ---|---|--- 2025-05-03 19:17:12+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14705 2025-05-03 19:40:38+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lobytw7omcf2 2025-05-03 22:03:38+00:00| seen|...

CVE-2025-1838 IBM Cloud Pak for Business Automation denial of service

IBM Cloud Pak for Business Automation 24.0.0 and 24.0.1 through 24.0.1 IF001 Authoring allows an authenticated user to bypass client-side data validation in an authoring user interface which could cause a denial of service...

CVE-2025-1838 IBM Cloud Pak for Business Automation denial of service

IBM Cloud Pak for Business Automation 24.0.0 and 24.0.1 through 24.0.1 IF001 Authoring allows an authenticated user to bypass client-side data validation in an authoring user interface which could cause a denial of service...

CVE-2025-1838

CVE-2025-1838 affects IBM Cloud Pak for Business Automation (IBM Business Automation Workflow) 24.0.0 and 24.0.1 through 24.0.1 IF001. The vulnerability stems from an authenticated user bypassing client-side data validation in the authoring UI, which could lead to a denial of service. Red Hat/IBM...

Security Bulletin: Denial of Service vulnerability affect IBM Business Automation Workflow - CVE-2025-1838

Summary IBM Business Automation Workflow Center is vulnerable to a denial of service attack. Vulnerability Details CVEID:CVE-2025-1838 DESCRIPTION: IBM Business Automation Workflow Authoring allows an authenticated user to bypass client-side data validation in an authoring user interface which...

Linux Distros Unpatched Vulnerability : CVE-2023-1838

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free flaw was found in vhostnetsetbackend in drivers/vhost/net.c in virtio network subcomponent in the Linux kernel due to a double fget. This flaw...

Linux Distros Unpatched Vulnerability : CVE-2016-1838

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS...

openSUSE Security Advisory (SUSE-SU-2024:1838-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 5 : libxml2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libxml2: Use after free via namespace node in XPointer ranges CVE-2016-4658 - libxml2: Missing validation...

Ubuntu: Security Advisory (USN-6740-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AlmaLinux 8 : kernel (ALSA-2024:0897)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:0897 advisory. - A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function areacacheget of the file...

RHEL 8 : kernel (RHSA-2024:0897)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0897 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/sched: schhfsc UAF...

CLSA-2023-1701962635 kernel: Fix of 18 CVEs

net/tls: do not free tlsrec on async operation in bpfexectxverdict CVE-2023-6176 - wifi: mac80211: fix MBSSID parsing use-after-free CVE-2022-42719 - mac80211: always allocate struct ieee80211elems CVE-2022-42719 - x86/sev: Check for user-space IOIO pointing to kernel space CVE-2023-46813 -...

Amazon Linux AMI : kernel (ALAS-2023-1838)

The version of kernel installed on the remote host is prior to 4.14.326-171.539. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1838 advisory. 2024-03-13: CVE-2023-4244 was added to this advisory. 2023-10-25: CVE-2023-45871 was added to this advisory...