CVE-2026-42827

creationtimestamp| type| source ---|---|--- 2026-05-21 21:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1886...

CVE-2026-1886 Go Night Pro | WordPress Dark Mode Plugin <= 1.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'margin' Shortcode Attribute

The Go Night Pro | WordPress Dark Mode Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'go-night-pro-shortcode' shortcode in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping on the user-supplied 'margin'...

RHSA-2026:1886 Red Hat Security Advisory: kernel security update

Bulletin has no description...

CVE-2005-1886

Cross-site scripting XSS vulnerability in view.php in YaPiG 0.92b, 0.93u and 0.94u allows remote attackers to inject arbitrary web script or HTML via 1 the phid parameter or 2 unknown parameters when posting a new comment...

CVE-2021-1886

Incorrect handling of pointers in trusted application key import mechanism could cause memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables...

CVE-2020-1886

A buffer overflow in WhatsApp for Android prior to v2.20.11 and WhatsApp Business for Android prior to v2.20.2 could have allowed an out-of-bounds write via a specially crafted video stream after receiving and answering a malicious video call...

CVE-2002-1886

TightAuction 3.0 stores config.inc under the web document root with insufficient access control, which allows remote attackers to obtain the database username and password...

CVE-2025-1886

Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to discover stored SMTP credentials...

CVE-2025-1886

creationtimestamp| type| source ---|---|--- 2025-03-07 11:34:48+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6830 2025-03-07 13:01:06+00:00| seen| Telegram/xNO8c93AXYGLx2Siqe1LKAuq4DJ9lYMZAzOaei3RNICrRc 2025-03-07 14:05:02+00:00| seen|...

CVE-2025-1886

Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to discover stored SMTP credentials...

CVE-2025-1886

CVE-2025-1886 describes a Pass-Back vulnerability in Sage 200 Spain, affecting versions prior to 2025.35.000. An authenticated user with administrator privileges can disclose stored SMTP credentials, indicating a confidentiality impact. The issue is documented across multiple sources (NVD, Red Ha...

CVE-2025-1886 Pass-Back vulnerability in Sage 200 Spain

Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to discover stored SMTP credentials...

Linux Distros Unpatched Vulnerability : CVE-2022-1886

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. CVE-2022-1886 Note that Nessus relies on the presence of the package as reported by the...

SUSE: Security Advisory (SUSE-SU-2024:1886-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 Security Update : gstreamer-plugins-base (SUSE-SU-2024:1886-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:1886-1 advisory. - CVE-2024-4453: Fixed lack of proper validation of user-supplied data when parsing EXIF metadata bsc1224806 Tenable has extracted the...

CVE-2024-1886

creationtimestamp| type| source ---|---|--- 2024-02-26 17:42:34+00:00| seen| https://t.me/ctinow/193555 2024-03-14 08:52:02+00:00| seen| https://t.me/ctinow/207546...

CVE-2024-1886

CVE-2024-1886 describes an absolute path traversal vulnerability in LG Signage’s webOS. The issue allows remote attackers to traverse the directory structure and read arbitrary files on the affected webOS-based signage system. The available documents do not specify affected versions or concrete e...

Ubuntu: Security Advisory (USN-6557-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-1886

Authentication Bypass by Capture-replay in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1886 Authentication Bypass by Capture-replay in thorsten/phpmyfaq

Authentication Bypass by Capture-replay in GitHub repository thorsten/phpmyfaq prior to 3.1.12...