EUVD-2025-197685

The Project Management, Team Collaboration, Kanban Board, Gantt Charts, Task Manager and More – WP Project Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘completedatoperator’ parameter in all versions up to, and including, 2.6.26 due to insufficient escaping on th...

CVE-2025-8994 WP Project Manager <= 2.6.26 - Authenticated (Subscriber+) SQL Injection via 'completed_at_operator'

The Project Management, Team Collaboration, Kanban Board, Gantt Charts, Task Manager and More – WP Project Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘completedatoperator’ parameter in all versions up to, and including, 2.6.26 due to insufficient escaping on th...

CVE-2025-8994 WP Project Manager <= 2.6.26 - Authenticated (Subscriber+) SQL Injection via 'completed_at_operator'

The Project Management, Team Collaboration, Kanban Board, Gantt Charts, Task Manager and More – WP Project Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘completedatoperator’ parameter in all versions up to, and including, 2.6.26 due to insufficient escaping on th...

WordPress plugin WP Project Manager SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A SQL...

WordPress WP Project Manager plugin <= 2.6.26 - Authenticated (Subscriber+) SQL Injection via 'completed_at_operator' vulnerability

Authenticated Subscriber+ SQL Injection via 'completedatoperator' vulnerability discovered by mikemyers in WordPress Plugin WP Project Manager versions = 2.6.26...

SUSE CVE-2008-3686

The rt6fillnode function in net/ipv6/route.c in Linux kernel 2.6.26-rc4, 2.6.26.2, and possibly other 2.6.26 versions, allows local users to cause a denial of service kernel OOPS via IPv6 requests when no IPv6 input device is in use, which triggers a NULL pointer dereference...

SUSE CVE-2010-3308

Buffer overflow in programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 might allow remote authenticated gateways to execute arbitrary code or cause a denial of service via a long ciscobanner aka serverbanner field...

Linux kernel ia64 subsystem denial of service vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the U.S. The ia64 subsystem is one of the 64-bit architecture subsystems. A denial of service vulnerability exists in the ia64 subsystem in versions of Linux kernel prior to 2.6.26. A local...

Linux Kernel 2.6.x 'drivers/char/tty_ldisc.c' NULL Pointer Dereference Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36191/info The Linux kernel is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Given the nature of this issue, attacker...

Openswan: Gateway arbitrary execution via shell metacharacters in the cisco_banner

programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 allows remote authenticated gateways to execute arbitrary commands via shell metacharacters in the ciscobanner aka serverbanner field, a different vulnerability than CVE-2010-3308...

[SECURITY] [DSA 2110-1] New Linux 2.6.26 packages fix several issues

---------------------------------------------------------------------- Debian Security Advisory DSA-2110-1 [email protected] http://www.debian.org/security/ dann frazier September 17, 2010 http://www.debian.org/security/faq -...

qemu: Improper handling of erroneous data provided by Linux virtio-net driver

The virtionetbadfeatures function in hw/virtio-net.c in the virtio-net driver in the Linux kernel before 2.6.26, when used on a guest OS in conjunction with qemu-kvm 0.11.0 or KVM 83, allows remote attackers to cause a denial of service guest OS crash, and an associated qemu-kvm process exit by...

Linux kernel 2.6.x mmap()和mremap()调用本地拒绝服务漏洞

BUGTRAQ ID: 37906 CVE ID: CVE-2010-0291 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的某些mmap和mremap调用可能泄露内存内存，本地用户可以利用这个漏洞耗尽所有可用的内存，导致拒绝服务。 Linux kernel 2.6.x 厂商补丁： Debian ------ Debian已经为此发布了一个安全公告（DSA-1996-1）以及相应补丁: DSA-1996-1：New Linux 2.6.26 packages fix several vulnerabilities...

[USN-863-1] QEMU vulnerability

=========================================================== Ubuntu Security Notice USN-863-1 December 03, 2009 qemu-kvm vulnerability https://launchpad.net/bugs/458521 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 9.10...

Linux Kernel 2.6.x - driverschartty_ldisc.c Null Pointer Dereference Denial of Service

Linux Kernel 2.6.x - driverscharttyldisc.c Null Pointer Dereference Denial of Service / source: https://www.securityfocus.com/bid/36191/info The Linux kernel is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to...

PT-2009-1015 · Xml +2 · Libxml2 +2

Name of the Vulnerable Software and Affected Versions: libxml2 versions 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32 libxml version 1.8.17 libxml2 versions prior to 2.7.3 Description: The issue is related to a stack consumption vulnerability in libxml2, allowing context-dependent attackers to cause...

Linux Kernel CIFS 'decode_unicode_ssetup()'远程缓冲区溢出漏洞

BUGTRAQ ID: 34612 CNCAN ID：CNCAN-2009042104 Linux是一款开放源代码的操作系统。 Linux Kernel CIFS 'decodeunicodessetup'存在缓冲区溢出，远程攻击者可以利用漏洞使系统崩溃。 在处理unicode字符串域对齐时存在错误，decodeunicodessetup存在不且当的假设，无论何时都进行垫字节处理，因此如果字符串域词对齐的情况下，组合serverDomain字符串的不正确缓冲区大小，可导致内存破坏。 Linux kernel 2.6.29 1 Linux kernel 2.6.29 -git8 Linux...

Linux Kernel 'exit_notify()' CAP_KILL校验本地特权提升漏洞

BUGTRAQ ID: 34405 CNCAN ID：CNCAN-2009040803 Linux是一款开放源代码的操作系统。 Linux exitnotify中CAPKILL检查存在问题，本地攻击者可以利用漏洞提升特权。 无论怎样重置-exitsignal，恶意用户可以绕过检查，使得恶意应用程序可以在退出前执行setuid两进制程序。导致特权提升。 Linux kernel 2.6.29 -git8 Linux kernel 2.6.29 -git1 Linux kernel 2.6.29 Linux kernel 2.6.28 9 Linux kernel 2.6.28 8 Linu...

PT-2009-1235 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.26 Description: A race condition exists in the do setlk function, allowing local users to cause a denial of service by interrupting an RPC call, resulting in a stray FL POSIX lock. This issue is related to t...

Linux Kernel 'hfsplus_find_cat()'本地拒绝服务漏洞

BUGTRAQ ID: 32093 CNCAN ID：CNCAN-2008110504 Linux是一款开放源代码的操作系统。 Linux 'hfsplusfindcat'存在内存破坏问题，本地攻击者可以利用漏洞对系统进行拒绝服务攻击。 目前没有详细漏洞细节提供。 Linux kernel 2.6.27 -rc8-git5 Linux kernel 2.6.27 -rc8 Linux kernel 2.6.27 -rc6-git6 Linux kernel 2.6.27 -rc6 Linux kernel 2.6.27 -rc5 Linux kernel 2.6.27 -rc2 Linu...