BELL-CVE-2026-23435 CVE-2026-23435 does not affect BellSoft software

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2026-23435

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - perf/x86: Move event pointer setup earlier in x86pmuenable A production AMD EPYC system crashed with a NULL pointer dereference in the PMU NMI handler: BUG:...

CVE-2025-23435

Cross-Site Request Forgery CSRF vulnerability in marcucci Password Protect Plugin for WordPress password-protect-plugin-for-wordpress allows Stored XSS.This issue affects Password Protect Plugin for WordPress: from n/a through = 0.8.1.0...

CVE-2022-23435

decoding.c in android-gif-drawable before 1.2.24 does not limit the maximum length of a comment, leading to denial of service...

CVE-2025-23435

creationtimestamp| type| source ---|---|--- 2025-01-16 20:16:30+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv3w4zotv2p 2025-01-16 20:23:06+00:00| seen| https://infosec.exchange/users/cve/statuses/113839897676072055...

CVE-2025-23435

CVE-2025-23435 describes a CSRF-driven Stored XSS in the Password Protect Plugin for WordPress. Affected: Password Protect Plugin for WordPress versions

CVE-2025-23435 WordPress Password Protect Plugin for WordPress plugin <= 0.8.1.0 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in David Marcucci Password Protect Plugin for WordPress allows Stored XSS.This issue affects Password Protect Plugin for WordPress: from n/a through 0.8.1.0...

CVE-2025-23435 WordPress Password Protect Plugin for WordPress plugin <= 0.8.1.0 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in marcucci Password Protect Plugin for WordPress password-protect-plugin-for-wordpress allows Stored XSS.This issue affects Password Protect Plugin for WordPress: from n/a through = 0.8.1.0...

CVE-2024-23435

creationtimestamp| type| source ---|---|--- 2025-01-01 00:19:15+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lenbz3fttb2c...

CVE-2023-23435

creationtimestamp| type| source ---|---|--- 2023-12-29 03:26:18+00:00| seen| https://t.me/ctinow/160286 2023-12-30 01:31:14+00:00| seen| https://t.me/cibsecurity/73859 2024-01-20 19:51:23+00:00| seen| https://t.me/ctinow/170710...

CVE-2023-23435

Some Honor products are affected by signature management vulnerability, successful exploitation could cause the forged system file overwrite the correct system file...

CVE-2022-23435

creationtimestamp| type| source ---|---|--- 2022-01-19 07:31:30+00:00| seen| https://t.me/cibsecurity/35766...

CVE-2022-23435

The CVE-2022-23435 issue affects android-gif-drawable (before 1.2.24), where decoding.c does not limit the maximum length of a comment, enabling denial of service. A fixed version is 1.2.24. Public details consistently describe the vulnerability path as an input validation error in decoding.c lea...

CVE-2021-23435

CVE-2021-23435 affects the Ruby gem clearance (Rails authentication). The open redirect vulnerability occurs when session[:return_to] is set to a value that includes multiple leading slashes (/////example.com), causing a redirect to an external domain after the slashes (e.g., http://example.com)....

CVE-2021-23435

This affects the package clearance before 2.5.0. The vulnerability can be possible when users are able to set the value of session:returnto. If the value used for returnto contains multiple leading slashes /////example.com the user ends up being redirected to the external domain that comes after...