33 matches found
CVE-2026-22376
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Parkivia parkivia allows PHP Local File Inclusion.This issue affects Parkivia: from n/a through = 1.1.9...
CVE-2026-22376
creationtimestamp| type| source ---|---|--- 2026-02-21 00:45:00+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfdfgibsak2t...
CVE-2026-22376
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Parkivia parkivia allows PHP Local File Inclusion.This issue affects Parkivia: from n/a through = 1.1.9...
CVE-2021-22376
A component of the HarmonyOS has a Improper Privilege Management vulnerability. Local attackers may exploit this vulnerability to bypass user restrictions...
RHSA-2025:22376 Red Hat Security Advisory: libxml2 security update
Bulletin has no description...
Fedora: Security Advisory (FEDORA-2025-f0077db20c)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-22376
Uncontrolled search path element in some installation software for IntelR Ethernet Adapter Driver Pack before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
Linux Distros Unpatched Vulnerability : CVE-2025-22376
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl, the default nonce is a 32-bit integer generated from the built-in rand function, which is...
Mageia: Security Advisory (MGASA-2025-0062)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 41 : perl-Net-OAuth (2025-f0077db20c)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-f0077db20c advisory. Update to 0.30, fixes CVE-2025-22376 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
Fedora: Security Advisory (FEDORA-2025-05e642f1ef)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 40 : perl-Net-OAuth (2025-05e642f1ef)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-05e642f1ef advisory. Update to 0.30, fixes CVE-2025-22376 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...
SUSE CVE-2025-22376
In Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl, the default nonce is a 32-bit integer generated from the built-in rand function, which is not cryptographically strong...
GHSA-237R-R8M4-4Q88 Guzzle OAuth Subscriber has insufficient nonce entropy
Impact Nonce generation does not use sufficient entropy nor a cryptographically secure pseudorandom source https://github.com/guzzle/oauth-subscriber/blob/0.8.0/src/Oauth1.phpL192. This can leave servers vulnerable to replay attacks when TLS is not used. Patches Upgrade to version 0.8.1 or higher...
CVE-2025-22376
In Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl, the default nonce is a 32-bit integer generated from the built-in rand function, which is not cryptographically strong...
CVE-2025-22376
In Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl, the default nonce is a 32-bit integer generated from the built-in rand function, which is not cryptographically strong...
CVE-2025-22376
creationtimestamp| type| source ---|---|--- 2025-01-03 21:15:41+00:00| seen| https://infosec.exchange/users/cve/statuses/113766494448501172 2025-01-03 23:42:36+00:00| seen| https://t.me/cvedetector/14245 2025-01-04 15:11:40+00:00| seen| https://bsky.app/profile/rrwo.bsky.social/post/3lewfbwsj722w...
CVE-2025-22376
Net::OAuth::Client in the Perl Net::OAuth package before 0.29 uses a 32-bit nonce generated from rand(), not cryptographically strong, risking nonce predictability in OAuth flows. Affected: Perl Net-OAuth
CVE-2025-22376
In Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl, the default nonce is a 32-bit integer generated from the built-in rand function, which is not cryptographically strong...
CVE-2025-22376
In Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl, the default nonce is a 32-bit integer generated from the built-in rand function, which is not cryptographically strong...