WordPress Ninja Job Board < 1.3.3 - Direct Request

WordPress Ninja Job Board plugin prior to 1.3.3 is susceptible to a direct request vulnerability. The plugin does not protect the directory where it stores uploaded resumes, making it vulnerable to unauthenticated directory listing which allows the download of uploaded resumes. id: CVE-2022-2544...

ROOT-OS-DEBIAN-12-CVE-2008-2544 CVE-2008-2544 in rootio-linux - Patched by Root

Root has patched CVE-2008-2544 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

MINI-2544-3HX5-2F6J

Bulletin has no description...

figma-tree (>=0.0.1 <=0.0.11) potentially affected by CVE-2026-2544 via lu2 (=2023.9.15)

lu2 NPM version =2023.9.15 is affected by a known vulnerability. The following packages have a transitive dependency on lu2 and may be impacted: - figma-tree =0.0.1, =0.0.11 Source cves: CVE-2026-2544 Source advisory: SNYK:JS-LU2-15285654...

CVE-2026-2544

A security flaw has been discovered in yued-fe LuLu UI up to 3.0.0. This issue affects the function childprocess.exec of the file run.js. The manipulation results in os command injection. The attack can be launched remotely. The vendor was contacted early about this disclosure but did not respond...

EUVD-2026-2544

The List Site Contributors plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'alpha' parameter in versions up to, and including, 1.1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary we...

CVE-2008-2544 vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-qemu, linux-qemu-melange...

Huawei EulerOS: Security Advisory for icu (EulerOS-SA-2025-2544)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EUVD-2020-2544

Malware in sbrugna...

EUVD-2022-2544

Malicious code in bioql PyPI...

CVE-2025-2544

creationtimestamp| type| source ---|---|--- 2025-04-05 02:36:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10592 2025-04-05 06:33:41+00:00| seen| https://t.me/cvedetector/22177...

CVE-2025-2544

The AI Content Pipelines plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and...

CVE-2025-2544

AI Content Pipelines (WordPress) shows a Stored Cross-Site Scripting vulnerability via SVG file uploads in versions ≤ 1.6, caused by insufficient input sanitization and output escaping. The issue can be triggered by an authenticated user with Author-level access and above, potentially affecting p...

WordPress AI Content Pipelines plugin <= 1.6 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload vulnerability

Authenticated Author+ Stored Cross-Site Scripting via SVG File Upload vulnerability discovered by Avraham Shemesh in WordPress Plugin AI Content Pipelines versions = 1.6...

RHSA-2025:2544

creationtimestamp| type| source ---|---|--- 2025-03-11 00:47:17+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7075...

Linux Distros Unpatched Vulnerability : CVE-2016-2544

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Race condition in the queuedelete function in sound/core/seq/seqqueue.c in the Linux kernel before 4.4.1 allows local users to cause a denial of service...

CentOS 6 : chromium-browser (RHSA-2020:2544)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2544 advisory. - Use after free in reader mode in Google Chrome on Android prior to 83.0.4103.61 allowed a remote attacker who had compromised the renderer process to...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2544)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-2544 Popup Builder <= 4.3.0 - Missing Authorization in Multiple AJAX Actions

The Popup Builder plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on all AJAX actions. This makes it possible for authenticated attackers, with subscriber-level access and above, to perform multiple unauthorized actions,...

WordPress Popup Builder Plugin <= 4.3.0 is vulnerable to Broken Access Control

Software Popup Builder Type Plugin Vulnerable versions = 4.3.0 Fixed in 4.3.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-2544 Patch priority Medium CVSS severity Medium 6.3 Developer Claim ownership PSID 4d2b92dba351 Credits Alex Thomas Required...