CVE-2025-26867

Missing Authorization vulnerability in Themes4WP Bulk allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Bulk: from n/a through 1.0.11...

CVE-2025-26867

CVE-2025-26867 is a Missing Authorization vulnerability affecting WordPress Theme/Plugin: Themes4WP Bulk versions

CVE-2025-26867 WordPress Bulk theme <= 1.0.11 - Broken Access Control vulnerability

Missing Authorization vulnerability in Themes4WP Bulk allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Bulk: from n/a through 1.0.11...

WordPress Bulk Theme <= 1.0.11 is vulnerable to Broken Access Control

Software Bulk Type Theme Vulnerable versions = 1.0.11 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2025-26867 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID a2112daa471f Credits Fariq Fadillah Gusti Insani Required...

SUSE CVE-2024-26867

In the Linux kernel, the following vulnerability has been resolved: comedi: comedi8255: Correct error in subdevice initialization The refactoring done in commit 5c57b1ccecc7 "comedi: comedi8255: Rework subdevice initialization functions" to the initialization of the io field of struct...

BELL-CVE-2024-26867

Bulletin has no description...

CVE-2024-26867

In the Linux kernel, the following vulnerability has been resolved: comedi: comedi8255: Correct error in subdevice initialization The refactoring done in commit 5c57b1ccecc7 "comedi: comedi8255: Rework subdevice initialization functions" to the initialization of the io field of struct...

CVE-2024-26867 comedi: comedi_8255: Correct error in subdevice initialization

In the Linux kernel, the following vulnerability has been resolved: comedi: comedi8255: Correct error in subdevice initialization The refactoring done in commit 5c57b1ccecc7 "comedi: comedi8255: Rework subdevice initialization functions" to the initialization of the io field of struct...

CVE-2024-26867 comedi: comedi_8255: Correct error in subdevice initialization

In the Linux kernel, the following vulnerability has been resolved: comedi: comedi8255: Correct error in subdevice initialization The refactoring done in commit 5c57b1ccecc7 "comedi: comedi8255: Rework subdevice initialization functions" to the initialization of the io field of struct...

CVE-2022-26867

creationtimestamp| type| source ---|---|--- 2022-06-03 00:25:47+00:00| seen| https://t.me/cibsecurity/43775...

CVE-2022-26867

PowerStore SW v2.1.1.0 supports the option to export data to either a CSV or an XLSX file. The data is taken as is, without any validation or sanitization. It allows a malicious, authenticated user to inject payloads that might get interpreted as formulas by the corresponding spreadsheet...

CVE-2022-26867

Dell PowerStore (SW v2.1.1.0) allows exporting data to CSV/XLSX without validation or sanitization. A malicious, authenticated user can inject payloads that spreadsheet applications may interpret as formulas when opening the exported file. This is a formula-injection risk in data export functiona...

CVE-2021-26867

creationtimestamp| type| source ---|---|--- 2021-03-11 19:00:35+00:00| seen| https://t.me/cibsecurity/24783 2022-03-09 17:15:00+00:00| seen| https://t.me/truesecator/2712...

CVE-2021-26867

Windows Hyper-V Remote Code Execution Vulnerability...

CVE-2021-26867

Windows Hyper-V Remote Code Execution Vulnerability...

CVE-2021-26867

CVE-2021-26867 is a Windows Hyper-V remote code execution vulnerability. Public sources indicate the issue affects Hyper-V components under Windows Server/Windows client environments and is described with high/critical impact. The NCSC dossier explicitly notes that exploitation is possible for Hy...

March 2021 Patch Tuesday – 82 Vulnerabilities, 10 Critical, Adobe

This month’s Microsoft Patch Tuesday addresses 82 vulnerabilities, of which 10 are rated with Critical severity. This follows an out-of-band security update on March 2 to address critical vulnerabilities in Microsoft Exchange. Adobe released patches today for its FrameMaker, Creative Cloud Deskto...

KB5000808: Windows 10 Version 1909 March 2021 Security Update

The remote Windows host is missing security update 5000808. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-1640, CVE-2021-1729, CVE-2021-24090, CVE-2021-24095, CVE-2021-26860,...

ARC Informatique PcVue (Update A)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: ARC Informatique Equipment: PcVue Vulnerabilities: Deserialization of Untrusted Data, Access to Critical Private Variable via Public Method, Information Exposure of Sensitive Information to an...

CVE-2020-26867

CVE-2020-26867 concerns ARC Informatique PcVue deserialization of untrusted data, enabling remote arbitrary code execution on the web/mobile back-end server. Affected: PcVue versions prior to 12.0.17 (8.10–12.0.x). Root cause: insecure deserialization of messages on the interface. Impact: high-se...