CVE-2026-1894

A vulnerability was detected in WeKan up to 8.20. This impacts an unknown function of the file models/checklistItems.js of the component REST API. Performing a manipulation of the argument item.cardId/item.checklistId/card.boardId results in improper authorization. Remote exploitation of the atta...

CVE-2026-1894

A vulnerability was detected in WeKan up to 8.20. This impacts an unknown function of the file models/checklistItems.js of the component REST API. Performing a manipulation of the argument item.cardId/item.checklistId/card.boardId results in improper authorization. Remote exploitation of the atta...

ECHO-5622-1894-E085

Bulletin has no description...

CVE-2022-1894

The Popup Builder WordPress plugin before 4.1.11 does not escape and sanitize some settings, which could allow high privilege users to perform Stored Cross-Site Scripting attacks when the unfiltredhtml is disallowed...

CVE-2021-1894

Improper access control in TrustZone due to improper error handling while handling the signing key in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking...

CVE-2025-1894

creationtimestamp| type| source ---|---|--- 2025-03-04 02:30:46+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6312 2025-03-04 03:01:08+00:00| published-proof-of-concept| Telegram/OhOzFiNBdcckJZvwRpCCvFizXXllaBPV0MS5KHznSv3TyI 2025-03-04 04:07:31+00:00| seen|...

CVE-2025-1894 PHPGurukul Restaurant Table Booking System search-result.php sql injection

A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /search-result.php. The manipulation of the argument searchdata leads to sql injection. The attack may be launched remotely...

CVE-2025-1894 PHPGurukul Restaurant Table Booking System search-result.php sql injection

A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /search-result.php. The manipulation of the argument searchdata leads to sql injection. The attack may be launched remotely...

Huawei EulerOS: Security Advisory for python-idna (EulerOS-SA-2024-1894)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2024:1894-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 7 : python-django (RHSA-2015:1894)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:1894 advisory. Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as muc...

CVE-2024-1894

creationtimestamp| type| source ---|---|--- 2024-03-13 17:37:08+00:00| seen| https://t.me/ctinow/206940...

CVE-2024-1894

CVE-2024-1894 affects Burst Statistics – Privacy-Friendly Analytics for WordPress (WordPress plugin) up to version 1.5.6.1. It is a Stored XSS via the burst_total_pageviews_count custom meta field due to insufficient input sanitization/output escaping. Exploitation requires an attacker with contr...

WordPress Burst Statistics Plugin <= 1.5.6.1 is vulnerable to Cross Site Scripting (XSS)

Software Burst Statistics Type Plugin Vulnerable versions = 1.5.6.1 Fixed in 1.5.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1894 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID ddeadfac1606 Credits Webbernaut Required...

Amazon Linux AMI : libXpm (ALAS-2023-1894)

The version of libXpm installed on the remote host is prior to 3.5.10-2.13. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1894 advisory. libXpm: out of bounds read in XpmCreateXpmImageFromBuffer NOTE: https://www.openwall.com/lists/oss-security/2023/10/03/1NOTE: Fix...

CVE-2023-1894

creationtimestamp| type| source ---|---|--- 2023-05-05 02:23:37+00:00| seen| https://t.me/cibsecurity/63343...

CVE-2023-1894

A Regular Expression Denial of Service ReDoS issue was discovered in Puppet Server 7.9.2 certificate validation. An issue related to specifically crafted certificate names significantly slowed down server operations...

CVE-2023-1894

A Regular Expression Denial of Service ReDoS issue was discovered in Puppet Server 7.9.2 certificate validation. An issue related to specifically crafted certificate names significantly slowed down server operations...

CVE-2023-1894

A Regular Expression Denial of Service ReDoS issue was discovered in Puppet Server 7.9.2 certificate validation. An issue related to specifically crafted certificate names significantly slowed down server operations...

CVE-2023-1894

A Regular Expression Denial of Service ReDoS issue was discovered in Puppet Server 7.9.2 certificate validation. An issue related to specifically crafted certificate names significantly slowed down server operations...