CVE-2026-1994

creationtimestamp| type| source ---|---|--- 2026-02-19 07:30:32+00:00| seen| https://infosec.exchange/users/offseq/statuses/116096121651199027 2026-02-19 07:30:34+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mf735tuyvq2n 2026-02-19 16:20:58+00:00| seen|...

CVE-2026-1994

The s2Member plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 260127. This is due to the plugin not properly validating a user's identity prior to updating their password. This makes it possible for unauthenticated attackers to...

CVE-2025-1994

creationtimestamp| type| source ---|---|--- 2025-08-26 17:16:28+00:00| seen| Telegram/TIgtEAZAgYrlsKYkVSozmOSC-zli57BD8qt4iLA2lE8W3lA...

CVE-2025-1994

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the BinaryFormatter function...

Huawei EulerOS: Security Advisory for libsoup (EulerOS-SA-2025-1994)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-1994

The Login With OTP Over SMS, Email, WhatsApp and Google Authenticator WordPress plugin before 1.0.8 does not escape its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfilteredhtml is disallowed...

CVE-2021-1994

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Web Services. Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic...

Linux Distros Unpatched Vulnerability : CVE-2023-1994

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file CVE-2023-1994 Note...

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2024-1994)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Friday Squid Blogging: 1994 Lair of Squid Game

I didnt know: In 1994, Hewlett-Packard released a miracle machine: the HP 200LX pocket-size PC. In the depths of the device, among the MS-DOS productivity apps built into its fixed memory, there lurked a first-person maze game called Lair of Squid. … In Lair of Squid, youre trapped in an underwat...

MAL-2024-3015 Malicious code in shri_krishna_ramamand_sagar_1994_dvd3_esub_rar_gj (npm)

--- -= Per source details. Do not edit below this line.=-...

RHEL 8 : container-tools:rhel8 (RHSA-2024:1994)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1994 advisory. The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: podman:...

WordPress Image Watermark Plugin <= 1.7.3 is vulnerable to Broken Access Control

Software Image Watermark Type Plugin Vulnerable versions = 1.7.3 Fixed in 1.7.4 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1994 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 790ca7ba3a40 Credits Lucio Sá Required privilege...

CVE-2024-1994

The Image Watermark plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the watermarkactionajax function in all versions up to, and including, 1.7.3. This makes it possible for authenticated attackers, with subscriber-level access and above...

mtp-1994.com Improper Access Control vulnerability OBB-3805664

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

GLSA-202309-02 : Wireshark: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202309-02 Wireshark: Multiple Vulnerabilities - Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file CVE-2022-3725 - Due to failure in validating th...

Oracle Solaris Critical Patch Update : jul2023_SRU11_4_58_144_3

This Solaris system is missing necessary patches to address critical security updates : %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Oracle CPU for jul2023. include'deprecatednasllevel.inc'; include'compat.inc'...

[SECURITY] [DSA 5429-1] wireshark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5429-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 15, 2023 https://www.debian.org/security/faq -...

Medium: wireshark

Issue Overview: RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file CVE-2023-1992 LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or...

Security fix for the ALT Linux 10 package wireshark version 4.0.5-alt1

4.0.5-alt1 built May 9, 2023 Anton Farygin in task 319886 May 4, 2023 Anton Farygin - 4.0.5 - Fixes: CVE-2023-1994 GQUIC dissector crash. CVE-2023-1993 LISP dissector large loop. CVE-2023-1992 RPCoRDMA dissector crash. CVE-2023-1161 ISO 15765 and ISO 10681 dissector crash...