CVE-2026-2098

creationtimestamp| type| source ---|---|--- 2026-02-06 12:06:00+00:00| seen| https://www.twcert.org.tw/en/cp-139-10700-3534d-2.html...

CVE-2022-35961

OpenZeppelin Contracts is a library for secure smart contract development. The functions ECDSA.recover and ECDSA.tryRecover are vulnerable to a kind of signature malleability due to accepting EIP-2098 compact signatures in addition to the traditional 65 byte signature format. This is only an issu...

EUVD-2022-6478

Malicious code in bioql PyPI...

CVE-2020-2098

A cross-site request forgery vulnerability in Jenkins Sounds Plugin 0.5 and earlier allows attacker to execute arbitrary OS commands as the OS user account running Jenkins...

CVE-2025-2098

Fast CAD Reader application on MacOS was found to be installed with incorrect file permissions rwxrwxrwx. This is inconsistent with standard macOS security practices, where applications should have drwxr-xr-x permissions. Incorrect permissions allow for Dylib Hijacking. Guest account, other users...

CVE-2025-2098

creationtimestamp| type| source ---|---|--- 2025-03-26 18:04:07+00:00| seen| https://t.me/cvedetector/21184...

CVE-2025-2098

Fast CAD Reader application on MacOS was found to be installed with incorrect file permissions rwxrwxrwx. This is inconsistent with standard macOS security practices, where applications should have drwxr-xr-x permissions. Incorrect permissions allow for Dylib Hijacking. Guest account, other users...

CVE-2025-2098

CVE-2025-2098 affects Fast CAD Reader on macOS. The issue is improper file permissions (rwxrwxrwx) for the application, diverging from macOS practice of drwxr-xr-x, enabling potential Dylib Hijacking and privilege escalation. Impact is described as local: guest/other users and applications could ...

CVE-2022-2098

Weak Password Requirements in GitHub repository kromitgmbh/titra prior to 0.78.1...

CVE-2024-2098

The Download Manager plugin for WordPress is vulnerable to unauthorized access of data due to an improper authorization check on the 'protectMediaLibrary' function in all versions up to, and including, 3.2.89. This makes it possible for unauthenticated attackers to download password-protected fil...

RHEL 6 / 7 : rh-ror41 (RHSA-2016:0456)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:0456 advisory. The rh-ror41 collection provides Ruby on Rails version 4.1. Ruby on Rails is a model-view-controller MVC framework for web application...

Security Bulletin: Vulnerability in Perl affects IBM watsonx.data

Summary For CVE-2020-10878, if a user submits a specially-crafted regular expression and it is used in a regex by watsonx.data, this may cause an instruction injection. Currently, IBM watsonx.data is not vulnerable to the vulnerabilities described in CVE-2020-10543, CVE-2020-12723 and...

CVE-2024-2098

The Download Manager plugin for WordPress is vulnerable to unauthorized access of data due to an improper authorization check on the 'protectMediaLibrary' function in all versions up to, and including, 3.2.89. This makes it possible for unauthenticated attackers to download password-protected fil...

CVE-2024-2098

CVE-2024-2098 affects the WordPress Download Manager plugin. The flaw is an improper authorization check in protectMediaLibrary, impacting all versions up to and including 3.2.89 and enables unauthenticated attackers to download password‑protected files. A fixed release exists (3.2.90) per Patchs...

CVE-2024-2098 Download Manager <= 3.2.89 - Improper Authorization via protectMediaLibrary

The Download Manager plugin for WordPress is vulnerable to unauthorized access of data due to an improper authorization check on the 'protectMediaLibrary' function in all versions up to, and including, 3.2.89. This makes it possible for unauthenticated attackers to download password-protected fil...

CVE-2024-2098 Download Manager <= 3.2.89 - Improper Authorization via protectMediaLibrary

The Download Manager plugin for WordPress is vulnerable to unauthorized access of data due to an improper authorization check on the 'protectMediaLibrary' function in all versions up to, and including, 3.2.89. This makes it possible for unauthenticated attackers to download password-protected fil...

WordPress Download Manager Plugin <= 3.2.89 is vulnerable to Broken Access Control

Software Download Manager Type Plugin Vulnerable versions = 3.2.89 Fixed in 3.2.90 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-2098 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 9cdd3cc02fc0 Credits m1tz Required privilege...

RHEL 6 : ant (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - apache-commons-compress: denial of service flaw when compressing certain files CVE-2012-2098 Note that Nessus has n...

Oracle Linux 8 : container-tools:ol8 (ELSA-2024-2098)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2098 advisory. - Rebuild with golang 1.20.10 for CVE-2023-39321 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note th...

CVE-2012-2098

creationtimestamp| type| source ---|---|--- 2023-09-14 12:24:22+00:00| seen| https://t.me/cibsecurity/70433...