Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26877)

crypto: xilinx - call finalize with bh disabled. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503518; scriptversion"1.2";...

CVE-2023-26877

File upload vulnerability found in Softexpert Excellence Suite v.2.1 allows attackers to execute arbitrary code via a .php file upload to the form/efmsexechtml/fileuploadparser.php endpoint...

CVE-2025-26877

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Front End Users front-end-only-users allows Stored XSS.This issue affects Front End Users: from n/a through = 3.2.30...

CVE-2025-26877

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Front End Users allows Stored XSS. This issue affects Front End Users: from n/a through 3.2.30...

CVE-2025-26877

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Front End Users front-end-only-users allows Stored XSS.This issue affects Front End Users: from n/a through = 3.2.30...

CVE-2025-26877 WordPress Front End Users Plugin <= 3.2.30 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rustaurius Front End Users front-end-only-users allows Stored XSS.This issue affects Front End Users: from n/a through = 3.2.30...

CVE-2021-26877

creationtimestamp| type| source ---|---|--- 2024-05-07 14:25:16+00:00| seen| https://t.me/CyberSecurityTechnologies/2894...

SUSE CVE-2024-26877

In the Linux kernel, the following vulnerability has been resolved: crypto: xilinx - call finalize with bh disabled When calling cryptofinalizerequest, BH should be disabled to avoid triggering the following calltrace: ------------ cut here ------------ WARNING: CPU: 2 PID: 74 at...

CVE-2024-26877 crypto: xilinx - call finalize with bh disabled

In the Linux kernel, the following vulnerability has been resolved: crypto: xilinx - call finalize with bh disabled When calling cryptofinalizerequest, BH should be disabled to avoid triggering the following calltrace: ------------ cut here ------------ WARNING: CPU: 2 PID: 74 at...

CVE-2024-26877

The CVE-2024-26877 issue is in the Linux kernel crypto/xilinx path: crypto_finalize_request is invoked with BH enabled, triggering a call trace. The vulnerability is resolved in the kernel (patches linked in the entry), with the root cause described as needing BH to be disabled when finalize is c...

CVE-2024-26877

In the Linux kernel, the following vulnerability has been resolved: crypto: xilinx - call finalize with bh disabled When calling cryptofinalizerequest, BH should be disabled to avoid triggering the following calltrace: ------------ cut here ------------ WARNING: CPU: 2 PID: 74 at...

CVE-2020-26877

creationtimestamp| type| source ---|---|--- 2022-06-29 18:43:49+00:00| seen| https://t.me/cibsecurity/45366...

CVE-2020-26877

ApiFest OAuth 2.0 Server 0.3.1 does not validate the redirect URI in accordance with RFC 6749 and is susceptible to an open redirector attack. Specifically, it directly sends an authorization code to the redirect URI submitted with the authorization request, without checking whether the redirect...

CVE-2020-26877

CVE-2020-26877 affects ApiFest OAuth 2.0 Server 0.3.1 and is caused by not validating the redirect_uri per RFC 6749, enabling an open redirect where an attacker-controlled redirect_uri can receive an authorization code. This is described as an open redirector vulnerability and is related to CVE-2...

CVE-2022-26877

creationtimestamp| type| source ---|---|--- 2022-04-09 07:13:38+00:00| seen| https://t.me/cibsecurity/40426...

CVE-2022-26877

Asana Desktop before 1.6.0 allows remote attackers to exfiltrate local files if they can trick the Asana desktop app into loading a malicious web page...

CVE-2022-26877

Asana Desktop vulnerable before 1.6.0: if users load a malicious web page, the app can exfiltrate local files. Root cause: loading an adversarial page triggers data leakage. Affected product/version: Asana Desktop prior to 1.6.0. Impact: potential unauthorized local file access. Remediation: upda...

CVE-2021-26877

Windows DNS Server Remote Code Execution Vulnerability...

CVE-2021-26877

Technical details for CVE-2021-26877 are not provided in the supplied documents. No affected products, root cause, impact, or remediation are specified here; monitor for updates from official advisories.

CVE-2021-26877 Windows DNS Server Remote Code Execution Vulnerability

...