CVE-2026-1951

creationtimestamp| type| source ---|---|--- 2026-04-24 07:30:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116458509219616758 2026-04-24 07:30:29+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mk7yyn3gto2v 2026-04-24 08:14:21+00:00| seen|...

EUVD-2026-1951

Improper Authentication vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Authentication Bypass.This issue affects DX NetOps Spectrum: 24.3.10 and earlier...

CVE-2025-1951

IBM Hardware Management Console - Power Systems V10.2.1030.0 and V10.3.1050.0 could allow a local user to execute commands as a privileged user due to execution of commands with unnecessary privileges...

CVE-2025-1951

creationtimestamp| type| source ---|---|--- 2025-04-22 15:03:45+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12866 2025-04-22 15:52:33+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114382415652361250 2025-04-22 15:56:49+00:00| seen|...

CVE-2025-1951

CVE-2025-1951 affects IBM Hardware Management Console (Power Systems) versions V10.2.1030.0 and V10.3.1050.0. The underlying issue is execution of commands with unnecessary privileges, enabling a local user to run commands as a privileged user (CWE-250). IBM’s advisory confirms the root cause as ...

CVE-2025-1951 IBM Hardware Management Console - Power Systems command execution

IBM Hardware Management Console - Power Systems V10.2.1030.0 and V10.3.1050.0 could allow a local user to execute commands as a privileged user due to execution of commands with unnecessary privileges...

Linux Distros Unpatched Vulnerability : CVE-2016-1951

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime NSPR before 4.12 allow remote attackers to cause a denial of service buffer overfl...

RHEL 7 : nspr (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nspr: Memory allocation issue related to PRprintf functions CVE-2016-1951 Note that Nessus has not tested for this...

RHEL 6 : nspr (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nspr: Memory allocation issue related to PRprintf functions CVE-2016-1951 Note that Nessus has not tested for this...

RHEL 5 : nspr (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nspr: Memory allocation issue related to PRprintf functions CVE-2016-1951 Note that Nessus has not tested for this...

CVE-2024-1951

creationtimestamp| type| source ---|---|--- 2024-03-13 17:37:11+00:00| seen| https://t.me/ctinow/206943...

CVE-2024-1951 Logo Showcase Ultimate – Logo Carousel, Logo Slider & Logo Grid <= 1.3.8 - Authenticated(Contributor+) PHP Object Injection

The Logo Showcase Ultimate – Logo Carousel, Logo Slider & Logo Grid plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.3.8 via deserialization via shortcode of untrusted input. This makes it possible for authenticated attackers, with contributor...

WordPress Logo Showcase Ultimate – Logo Carousel, Logo Slider & Logo Grid Plugin <= 1.3.8 is vulnerable to PHP Object Injection

Software Logo Showcase Ultimate – Logo Carousel, Logo Slider & Logo Grid Type Plugin Vulnerable versions = 1.3.8 Fixed in 1.3.9 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2024-1951 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 5b1fd4bab381...

CVE-2013-1951

creationtimestamp| type| source ---|---|--- 2024-02-01 11:11:24+00:00| seen| https://t.me/ctinow/177473...

CVE-2023-1951

CVE-2023-1951 affects SourceCodester Online Computer and Laptop Store 1.0. The SQL injection stems from the delete_brand function in /admin/maintenance/brand.php, via manipulation of the id parameter. The issue can be exploited remotely; exploitation has been disclosed publicly, with VDB-225338 a...

CVE-2022-1951

creationtimestamp| type| source ---|---|--- 2022-07-11 16:19:13+00:00| seen| https://t.me/cibsecurity/45910...

CVE-2022-1951 Core Plugin for Kitestudio Themes < 2.3.1 - Reflected Cross-Site-Scripting

The core plugin for kitestudio WordPress plugin before 2.3.1 does not sanitise and escape some parameters before outputting them back in a response of an AJAX action, available to both unauthenticated and authenticated users when a premium theme from the vendor is active, leading to a Reflected...

CVE-2022-1951

The CVE-2022-1951 entry corresponds to the kitestudio WordPress Core Plugin for Kitestudio Themes, affected versions prior to 2.3.1. The root cause is failure to sanitize and escape certain parameters in the AJAX response, allowing a Reflected Cross‑Site Scripting (XSS) vulnerability that is expl...

Security Bulletin: Apache Solr, shipped with IBM Operations Analytics - Log Analysis, susceptible to multiple vulnerabilities in Apache Tika

Summary There are vulnerabilities in various versions of Apache Tika that affect Apache Solr. The vulnerabilities are in Vulnerability Details section. Vulnerability Details CVEID: CVE-2019-10094 DESCRIPTION: Apache Tika is vulnerable to a stack-based buffer overflow, caused by a flaw in the...

SUSE: Security Advisory (SUSE-SU-2021:1951-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...