WordPress Easy Student Results <=2.2.8 - Improper Authorization

WordPress Easy Student Results plugin through 2.2.8 is susceptible to information disclosure. The plugin lacks authorization in its REST API, which can allow an attacker to retrieve sensitive information related to courses, exams, and departments, as well as student grades and information such as...

ROOT-OS-DEBIAN-12-CVE-2024-2379 CVE-2024-2379 in rootio-curl - Patched by Root

Root has patched CVE-2024-2379 in the rootio-curl package for Root:Debian:12. Multiple fixed versions available...

MINI-376C-2379-XW8X

Bulletin has no description...

Security Advisory 0134

Security Advisory 0134 PDF Date: February 17, 2026 Revision | Date | Changes ---|---|--- 1.0 | February 17, 2026 | Initial release The CVE-ID tracking this issue: CVE-2026-2379 CVSSv3.1 Base Score: 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Common Weakness Enumeration: CWE-672: Operation on...

EUVD-2026-2379

The User Management Engine UME in NetWeaver Application Server for Java NW AS Java utilizes an obsolete cryptographic algorithm for encrypting User Mapping data. This weakness could allow an attacker with high-privileged access to exploit the vulnerability under specific conditions potentially...

CVE-2014-2379

creationtimestamp| type| source ---|---|--- 2025-10-13 23:15:42+00:00| seen| Telegram/4vVoQWn6ePaQQ-yrLtbpqgVAy-AnC0W7J609MhOgQkHBA...

CVE-2007-2379

creationtimestamp| type| source ---|---|--- 2025-10-06 05:11:18+00:00| seen| https://gist.github.com/ankurpandeyvns/e4ac2e2b2bbe4a2a9ee40a5c6cfa0c33...

Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller

!Exploi...

CVE-2022-2379

The Easy Student Results WordPress plugin through 2.2.8 lacks authorisation in its REST API, allowing unauthenticated users to retrieve information related to the courses, exams, departments as well as student's grades and PII such as email address, physical address, phone number etc...

CVE-2002-2379

Cisco AS5350 IOS 12.211T with access control lists ACLs applied and possibly with ssh running allows remote attackers to cause a denial of service crash via a port scan, possibly due to an ssh bug. NOTE: this issue could not be reproduced by the vendor...

CVE-2025-2379

creationtimestamp| type| source ---|---|--- 2025-03-17 13:46:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7768 2025-03-17 16:33:08+00:00| seen| Telegram/tbvVbz5ekkGAeSawYQoMdEeMb-2G-PfhhFRvwFDUo-eDBI 2025-03-17 17:28:12+00:00| seen| https://t.me/cvedetector/20479...

CVE-2025-2379 PHPGurukul Apartment Visitors Management System create-pass.php sql injection

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /create-pass.php. The manipulation of the argument visname leads to sql injection. The attack can be initiated remotely. The...

CVE-2025-2379 PHPGurukul Apartment Visitors Management System create-pass.php sql injection

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /create-pass.php. The manipulation of the argument visname leads to sql injection. The attack can be initiated remotely. The...

CVE-2025-2379

CVE-2025-2379 concerns PHPGurukul Apartment Visitors Management System 1.0. The vulnerability exists in the unknown code path of the file /create-pass.php , where manipulating the visname parameter leads to a SQL injection . The issue is exploitable remotely and the exploit has been disclosed pub...

K000150406: jQuery vulnerability CVE-2007-2379

Security Advisory Description The jQuery framework exchanges data using JavaScript Object Notation JSON without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and...

Linux Distros Unpatched Vulnerability : CVE-2024-2379

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libcurl skips the certificate verification for a QUIC connection under certain conditions, when built to use wolfSSL. If told to use an unknown/bad cipher or...

Tenable Security Center Multiple Vulnerabilities (TNS-2024-13)

According to its self-reported version, the Tenable Security Center running on the remote host is 6.2.1, 6.3.0 or 6.4.0. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2024-13 advisory. - Security Center leverages third-party software to help provide underlying...

RHEL 7 : pidgin (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - pidgin: MXIT gsnprintf Multiple Buffer Overflow Vulnerabilities CVE-2016-2368 - pidgin: Eavesdropping...

RHEL 7 : pidgin (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - pidgin: MXIT gsnprintf Multiple Buffer Overflow Vulnerabilities CVE-2016-2368 - pidgin: Eavesdropping...

Moderate: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP4 security update

Red Hat JBoss Core Services Apache HTTP Server 2.4.57 Service Pack 4 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...