Transposh WordPress Translation <= 1.0.8 - Unauthenticated Settings Change

The Transposh WordPress Translation plugin for WordPress is vulnerable to unauthorized setting changes by unauthenticated users in versions up to, and including, 1.0.8.1. This is due to insufficient permissions checking on the 'tptranslation' AJAX action and default settings which makes it possib...

CVE-2026-2461

Mattermost Plugins versions =11.3 11.0.3 11.2.2 10.10.11.0 fail to implement authorisation checks on comment block modifications, which allows an authorised attacker with editor permission to modify comments created by other board members. Mattermost Advisory ID: MMSA-2025-00559...

Exploit for CVE-2026-2461

No d...

CVE-2021-2461

Vulnerability in the Oracle Communications Interactive Session Recorder product of Oracle Communications component: Provision API. The supported version that is affected is 6.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

CVE-2024-2461

If exploited an attacker could traverse the file system to access files or directories that would otherwise be inaccessible...

CVE-2022-2461

creationtimestamp| type| source ---|---|--- 2025-09-16 05:39:12+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2022/CVE-2022-2461.yaml 2025-09-17 21:02:37+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lz2qayx6up25...

CVE-2024-2461

creationtimestamp| type| source ---|---|--- 2025-01-16 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-016-07 2025-03-04 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-063-04...

VulnCheck KEV: CVE-2013-2461

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect...

openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0117-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux 2 : jtidy (ALAS-2024-2461)

The version of jtidy installed on the remote host is prior to 1.0-0.16.20100930svn1125. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2461 advisory. An issue was discovered jtidy thru r938 allows attackers to cause a denial of service or other unspecified impacts v...

openSUSE 15 Security Update : chromium (openSUSE-SU-2023:0117-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0117-1 advisory. - Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to bypass permission restrictions via...

Fedora: Security Advisory for chromium (FEDORA-2023-2c4a95caf8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for chromium (FEDORA-2023-12b28d0d37)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 37 : chromium (2023-2c4a95caf8)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-2c4a95caf8 advisory. update to 113.0.5672.64. Fixes the following security issues: CVE-2023-2459 CVE-2023-2460 CVE-2023-2461 CVE-2023-2462 CVE-2023-2463 CVE-2023-2464...

Fedora 38 : chromium (2023-b098d00117)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-b098d00117 advisory. update to 113.0.5672.64. Fixes the following security issues: CVE-2023-2459 CVE-2023-2460 CVE-2023-2461 CVE-2023-2462 CVE-2023-2463 CVE-2023-2464...

Debian: Security Advisory (DSA-5398-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 5398-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5398-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 04, 2023 https://www.debian.org/security/faq -...

CVE-2023-2461

creationtimestamp| type| source ---|---|--- 2023-05-03 07:30:52+00:00| seen| https://t.me/cibsecurity/63201...

CVE-2023-2461

Use after free in OS Inputs in Google Chrome on ChromeOS prior to 113.0.5672.63 allowed a remote attacker who convinced a user to enage in specific UI interaction to potentially exploit heap corruption via crafted UI interaction. Chromium security severity: Medium...

DEBIAN-CVE-2023-2461

Use after free in OS Inputs in Google Chrome on ChromeOS prior to 113.0.5672.63 allowed a remote attacker who convinced a user to enage in specific UI interaction to potentially exploit heap corruption via crafted UI interaction. Chromium security severity: Medium...