CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

39 matches found

Tenable Nessus•added 2026/05/14 12:0 a.m.•8 views

Amazon Linux 2 : gimp, --advisory ALAS2GIMP-2026-015 (ALASGIMP-2026-015)

The version of gimp installed on the remote host is prior to 2.8.22-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2GIMP-2026-015 advisory. A flaw was found in GIMP. A remote attacker could exploit an integer overflow vulnerability in the FITS image loader by providing ...

7.8CVSS6.2AI score0.00023EPSS

Exploits0References4

RedhatCVE•added 2026/02/20 1:27 p.m.•0 views

CVE-2026-25411

Cross-Site Request Forgery CSRF vulnerability in themastercut Revision Manager TMC revision-manager-tmc allows Cross Site Request Forgery.This issue affects Revision Manager TMC: from n/a through = 2.8.22...

4.3CVSS5.5AI score0.0002EPSS

Exploits0References1

NVD•added 2026/02/19 9:16 a.m.•2 views

CVE-2026-25411

4.3CVSS0.0002EPSS

Exploits0References1

Vulnrichment•added 2026/02/19 8:27 a.m.•2 views

CVE-2026-25411 WordPress Revision Manager TMC plugin <= 2.8.22 - Cross Site Request Forgery (CSRF) vulnerability

5.5AI score0.0002EPSS

Exploits0References1

Cvelist•added 2026/02/19 8:27 a.m.•25 views

CVE-2026-25411 WordPress Revision Manager TMC plugin <= 2.8.22 - Cross Site Request Forgery (CSRF) vulnerability

4.3CVSS0.0002EPSS

Exploits0References1

CVE•added 2026/02/19 8:27 a.m.•6 views

CVE-2026-25411

CVE-2026-25411 is a CSRF vulnerability in the Revision Manager TMC WordPress plugin, affecting versions up to 2.8.22. The issue is described across multiple sources (NVD, Red Hat, PatchStack, CVE list) as Cross-Site Forgery in Revision Manager TMC. The primary documented impact is CSRF exposure; ...

4.3CVSS5.4AI score0.0002EPSS

Exploits0References1

CNNVD•added 2026/02/19 12:0 a.m.•3 views

WordPress plugin Revision Manager TMC 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.3CVSS5.8AI score0.0002EPSS

Exploits0References1

Positive Technologies•added 2026/02/19 12:0 a.m.•3 views

PT-2026-20736

5.5AI score0.0002EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-8936

Malware in sbrugna...

7.8CVSS7.7AI score0.00351EPSS

Exploits0References9

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2017-8935

Malware in sbrugna...

7.8CVSS7.7AI score0.00326EPSS

Exploits0References10

Tenable Nessus•added 2025/03/04 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2017-17786

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c related to bgr2rgb.part.1 via an unexpected bits-per-pixel val...

7.8CVSS6.5AI score0.00312EPSS

Exploits0References3

RedhatCVE•added 2025/02/16 1:20 p.m.•3 views

CVE-2025-24592

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SysBasics Customize My Account for WooCommerce customize-my-account-for-woocommerce allows Reflected XSS.This issue affects Customize My Account for WooCommerce: from n/a through = 2.8.22...

7.1CVSS5.9AI score0.00131EPSS

Exploits0References1

Cvelist•added 2025/02/14 12:44 p.m.•11 views

CVE-2025-24592 WordPress SysBasics Customize My Account for WooCommerce plugin <= 2.8.22 - Reflected Cross Site Scripting (XSS) vulnerability

7.1CVSS0.00131EPSS

Exploits0References1

Oracle linux•added 2024/12/16 12:0 a.m.•20 views

gimp:2.8.22 security update

2:2.8.22-1.0.1 - Fix CVE-2023-44442 Orabug: 37344570 - Fix CVE-2023-44444...

7.8CVSS6.9AI score0.58322EPSS

Exploits0

OSV•added 2024/12/03 10:2 a.m.•20 views

RHSA-2024:10666 Red Hat Security Advisory: gimp:2.8.22 security update

Bulletin has no description...

7.8CVSS6.4AI score0.58322EPSS

Exploits0References14

Japan Vulnerability Notes•added 2023/09/22 12:0 a.m.•38 views

JVN#97197972: Multiple vulnerabilities in WordPress plugin "Welcart e-Commerce"

WordPress plugin "Welcart e-Commerce" provided by Collne Inc. contains multiple vulnerabilities listed below. Unrestricted Upload of File with Dangerous Type CWE-434 - CVE-2023-40219 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N| Base Score: 2.7 CVSS v2|...

8.8CVSS6.6AI score0.00501EPSS

Exploits0

SUSE CVE•added 2023/02/15 4:36 a.m.•1 views

SUSE CVE-2017-17785

In GIMP 2.8.22, there is a heap-based buffer overflow in the flireadbrun function in plug-ins/file-fli/fli.c...

3.3CVSS9.4AI score0.00351EPSS

Exploits0References7

RedhatCVE•added 2017/12/26 6:49 p.m.•20 views

CVE-2017-17786

In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c related to bgr2rgb.part.1 via an unexpected bits-per-pixel value for an RGBA image...

7.8CVSS3.8AI score0.00312EPSS

Exploits0References1

RedhatCVE•added 2017/12/26 6:20 p.m.•21 views

CVE-2017-17788

In GIMP 2.8.22, there is a stack-based buffer over-read in xcfloadstream in app/xcf/xcf.c when there is no '\0' character after the version string...

5.5CVSS4.3AI score0.00479EPSS

Exploits0References1

NVD•added 2017/12/20 9:29 a.m.•12 views

CVE-2017-17787

In GIMP 2.8.22, there is a heap-based buffer over-read in readcreatorblock in plug-ins/common/file-psp.c...

7.8CVSS7.8AI score0.00207EPSS

Exploits0References5