CVE-2025-26867

Missing Authorization vulnerability in Themes4WP Bulk allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Bulk: from n/a through 1.0.11...

CVE-2025-26867

CVE-2025-26867 is a Missing Authorization vulnerability affecting WordPress Theme/Plugin: Themes4WP Bulk versions

CVE-2025-26867 WordPress Bulk theme <= 1.0.11 - Broken Access Control vulnerability

Missing Authorization vulnerability in Themes4WP Bulk allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Bulk: from n/a through 1.0.11...

WordPress Bulk Theme <= 1.0.11 is vulnerable to Broken Access Control

Software Bulk Type Theme Vulnerable versions = 1.0.11 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2025-26867 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID a2112daa471f Credits Fariq Fadillah Gusti Insani Required...

SUSE CVE-2024-26867

In the Linux kernel, the following vulnerability has been resolved: comedi: comedi8255: Correct error in subdevice initialization The refactoring done in commit 5c57b1ccecc7 "comedi: comedi8255: Rework subdevice initialization functions" to the initialization of the io field of struct...

BELL-CVE-2024-26867

Bulletin has no description...

CVE-2024-26867

In the Linux kernel, the following vulnerability has been resolved: comedi: comedi8255: Correct error in subdevice initialization The refactoring done in commit 5c57b1ccecc7 "comedi: comedi8255: Rework subdevice initialization functions" to the initialization of the io field of struct...

CVE-2024-26867 comedi: comedi_8255: Correct error in subdevice initialization

In the Linux kernel, the following vulnerability has been resolved: comedi: comedi8255: Correct error in subdevice initialization The refactoring done in commit 5c57b1ccecc7 "comedi: comedi8255: Rework subdevice initialization functions" to the initialization of the io field of struct...

CVE-2024-26867 comedi: comedi_8255: Correct error in subdevice initialization

In the Linux kernel, the following vulnerability has been resolved: comedi: comedi8255: Correct error in subdevice initialization The refactoring done in commit 5c57b1ccecc7 "comedi: comedi8255: Rework subdevice initialization functions" to the initialization of the io field of struct...

CVE-2022-26867

creationtimestamp| type| source ---|---|--- 2022-06-03 00:25:47+00:00| seen| https://t.me/cibsecurity/43775...

CVE-2022-26867

PowerStore SW v2.1.1.0 supports the option to export data to either a CSV or an XLSX file. The data is taken as is, without any validation or sanitization. It allows a malicious, authenticated user to inject payloads that might get interpreted as formulas by the corresponding spreadsheet...

CVE-2022-26867

Dell PowerStore (SW v2.1.1.0) allows exporting data to CSV/XLSX without validation or sanitization. A malicious, authenticated user can inject payloads that spreadsheet applications may interpret as formulas when opening the exported file. This is a formula-injection risk in data export functiona...

CVE-2021-26867

creationtimestamp| type| source ---|---|--- 2021-03-11 19:00:35+00:00| seen| https://t.me/cibsecurity/24783 2022-03-09 17:15:00+00:00| seen| https://t.me/truesecator/2712...

CVE-2021-26867

Windows Hyper-V Remote Code Execution Vulnerability...

CVE-2021-26867

Windows Hyper-V Remote Code Execution Vulnerability...

CVE-2021-26867

CVE-2021-26867 is a Windows Hyper-V remote code execution vulnerability. Public sources indicate the issue affects Hyper-V components under Windows Server/Windows client environments and is described with high/critical impact. The NCSC dossier explicitly notes that exploitation is possible for Hy...

March 2021 Patch Tuesday – 82 Vulnerabilities, 10 Critical, Adobe

This month’s Microsoft Patch Tuesday addresses 82 vulnerabilities, of which 10 are rated with Critical severity. This follows an out-of-band security update on March 2 to address critical vulnerabilities in Microsoft Exchange. Adobe released patches today for its FrameMaker, Creative Cloud Deskto...

KB5000808: Windows 10 Version 1909 March 2021 Security Update

The remote Windows host is missing security update 5000808. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-1640, CVE-2021-1729, CVE-2021-24090, CVE-2021-24095, CVE-2021-26860,...

ARC Informatique PcVue (Update A)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: ARC Informatique Equipment: PcVue Vulnerabilities: Deserialization of Untrusted Data, Access to Critical Private Variable via Public Method, Information Exposure of Sensitive Information to an...

CVE-2020-26867 ARC Informatique PcVue Deserialization of Untrusted Data

ARC Informatique PcVue prior to version 12.0.17 is vulnerable due to the deserialization of untrusted data, which may allow an attacker to remotely execute arbitrary code on the web and mobile back-end server...