Lucene search
K

559 matches found

OSV
OSV
added 2026/01/23 8:16 a.m.4 views

UBUNTU-CVE-2025-59375

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing...

7.5CVSS6.4AI score0.01279EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/01/17 12:0 a.m.8 views

WordPress plugin Wallet System for WooCommerce has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

6.5CVSS5.8AI score0.00214EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

EulerOS 2.0 SP12 : expat (EulerOS-SA-2026-1088)

According to the versions of the expat package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for...

7.5CVSS6.4AI score0.01279EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/09 9:29 a.m.6 views

CVE-2023-50889

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in The Beaver Builder Team Beaver Builder – WordPress Page Builder allows Stored XSS.This issue affects Beaver Builder – WordPress Page Builder: from n/a through 2.7.2...

6.5CVSS6.7AI score0.00321EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:4 a.m.8 views

CVE-2024-39645

Cross-Site Request Forgery CSRF vulnerability in Themeum Tutor LMS.This issue affects Tutor LMS: from n/a through 2.7.2...

8.8CVSS7AI score0.0018EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:48 a.m.4 views

CVE-2025-23511

Cross-Site Request Forgery CSRF vulnerability in Stargazer WP-BlackCheck wp-blackcheck allows Stored XSS.This issue affects WP-BlackCheck: from n/a through = 2.7.2...

7.1CVSS7.2AI score0.00195EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/06 10:28 p.m.6 views

WordPress MTCaptcha WordPress Plugin plugin <= 2.7.2 - Cross-Site Request Forgery to Settings Update vulnerability

Cross-Site Request Forgery to Settings Update vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin MTCaptcha versions = 2.7.2...

4.3CVSS6.8AI score0.0014EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/01/05 11:17 a.m.6 views

CVE-2025-68029

Insertion of Sensitive Information Into Sent Data vulnerability in WP Swings Wallet System for WooCommerce wallet-system-for-woocommerce allows Retrieve Embedded Sensitive Data.This issue affects Wallet System for WooCommerce: from n/a through = 2.7.3...

6.3CVSS0.00168EPSS
Exploits0References1
CVE
CVE
added 2026/01/05 10:37 a.m.13 views

CVE-2025-68029

CVE-2025-68029 involves an Insertion of Sensitive Information Into Sent Data vulnerability in the Wallet System for WooCommerce. Affects Wallet System for WooCommerce – from unknown/no details to 2.7.2. The provided data indicates potential exposure of embedded sensitive data via the wallet featu...

6.3CVSS5.9AI score0.00168EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/05 12:0 a.m.8 views

PT-2026-1267

Name of the Vulnerable Software and Affected Versions WP Swings Wallet System for WooCommerce versions through 2.7.2 Description A flaw exists in WP Swings Wallet System for WooCommerce that allows the retrieval of embedded sensitive data due to the insertion of sensitive information into sent...

6.3CVSS6.3AI score0.00168EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.5 views

EulerOS Virtualization 2.13.1 : expat (EulerOS-SA-2025-2622)

According to the versions of the expat package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted fo...

7.5CVSS6.3AI score0.01279EPSS
Exploits1References2
NVD
NVD
added 2025/12/24 1:16 p.m.5 views

CVE-2025-68575

Missing Authorization vulnerability in Wappointment team Wappointment wappointment allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wappointment: from n/a through = 2.7.6...

5.3CVSS0.00219EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.8 views

PT-2025-53263

Name of the Vulnerable Software and Affected Versions Wappointment versions through 2.7.2 Description An issue exists in Wappointment that relates to incorrectly configured access control security levels, potentially allowing unauthorized access. Recommendations Update Wappointment to a version...

8.8CVSS6.6AI score0.00219EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2025/12/12 9:31 p.m.12 views

@4kda/vuetify-cifrum-components (>=0.0.5 <=0.0.51), @4kda/vuetify-cifrum-icons (>=0.0.13 <=0.0.15) +1183 more potentially affected by CVE-2025-8083 via vuetify (>=2.2.0 <=2.7.2)

vuetify NPM version =2.2.0, =0.0.5, =0.0.13, =0.0.13, =0.0.13, =1.0.8, =0.1.0, =0.0.1, =0.3.0, =2.0.5, =0.0.5, =0.1.0, =0.1.3, =0.1.22 and more Source cves: CVE-2025-8083 Source advisory: OSV:GHSA-3JP5-5F8R-Q2WG...

8.6CVSS5.7AI score0.00285EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/31 12:0 a.m.1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: expat (UTSA-2025-988618)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988618 advisory. libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing. Tenable has extracted...

7.5CVSS6.3AI score0.01279EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-790553f7f2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.01279EPSS
Exploits1References4
OSV
OSV
added 2025/10/17 2:54 p.m.3 views

OESA-2025-2457 expat security update

expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: libexpat in Expat before version 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document...

7.5CVSS7AI score0.01279EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-5834

Malware in sbrugna...

8.8CVSS5.9AI score0.01507EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-3916

Malware in sbrugna...

6.9CVSS6.1AI score0.00352EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-1836

Malware in sbrugna...

7.5CVSS8.1AI score0.03463EPSS
Exploits0References5
Rows per page
Query Builder