EUVD-2022-47655

Malicious code in bioql PyPI...

CVE-2024-2841

The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and including, 2.6.5 due to insufficient input sanitization and output escaping on user supplied attribute...

CVE-2022-2841

A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problematic. Affected is an unknown function of the component Uninstallation Handler. The manipulation leads to missing authorization. It is possible to launch the attack remotely. The...

CVE-2010-2841

Unspecified vulnerability in Cisco Wireless LAN Controller WLC software 4.2 before 4.2.209.0; 4.2M before 4.2.207.54M; 5.0, 5.1, and 6.0 before 6.0.196.0; and 5.2 before 5.2.193.11 allows remote authenticated users to cause a denial of service device reload via crafted HTTP packets that trigger...

CVE-2019-2841

Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications subcomponent: Infrastructure. Supported versions that are affected are 12.0.1, 12.0.3, 12.0.4, 12.1.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low...

CVE-2022-2841

creationtimestamp| type| source ---|---|--- 2025-04-15 13:54:22+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11803...

CVE-2025-2841

creationtimestamp| type| source ---|---|--- 2025-04-12 02:51:20+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11533 2025-04-12 05:42:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmlt6r37qg2h 2025-04-12 06:39:53+00:00| seen| https://t.me/cvedetector/22788...

CVE-2025-2841

CVE-2025-2841 affects Cart66 Cloud for WordPress (up to version 2.3.7). It enables unauthenticated access to phpinfo.php, exposing potentially sensitive information. As per Wordfence, this entry is currently Unpatched; no mitigation details are provided in the supplied docs.

CVE-2025-2841 Cart66 Cloud <= 2.3.7 - Unauthenticated Information Exposure

The Cart66 Cloud plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.3.7 through the publicly accessible phpinfo.php script. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in the...

WordPress Cart66 Cloud plugin <= 2.3.7 - Unauthenticated Information Exposure vulnerability

Unauthenticated Information Exposure vulnerability discovered by Avraham Shemesh in WordPress Plugin Cart66 Cloud versions = 2.3.7...

Linux Distros Unpatched Vulnerability : CVE-2016-2841

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ne2000receive function in the NE2000 NIC emulation support hw/net/ne2000.c in QEMU before 2.5.1 allows local guest OS administrators to cause a denial of...

CVE-2020-2841

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite component: Setup, Admin. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge...

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2024-2841)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-2841

The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and including, 2.6.5 due to insufficient input sanitization and output escaping on user supplied attribute...

CVE-2023-2841

The Advanced Local Pickup for WooCommerce plugin for WordPress is vulnerable to time-based SQL Injection via the id parameter in versions up to, and including, 1.5.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This make...

CVE-2023-2841

CVE-2023-2841 concerns the WordPress plugin Advanced Local Pickup for WooCommerce. The vulnerability is an SQL Injection via the id parameter in versions up to and including 1.5.5 due to insufficient escaping and query preparation. Exploitation requires Administrator-level privileges (authenticat...

WordPress Advanced Local Pickup for WooCommerce Plugin <= 1.5.5 is vulnerable to SQL Injection

Software Advanced Local Pickup for WooCommerce Type Plugin Vulnerable versions = 1.5.5 Fixed in 1.6.0 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-2841 Patch priority Low CVSS severity Low 7.2 Developer Claim ownership PSID 51d0507c3c65 Credits Marco Wotschka Required...

CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token

Exploit Title: CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token Date: 30/11/2022 Exploit Author: Walter Oberacher, Raffaele Nacca, Davide Bianchin, Fortunato Lodari, Luca Bernardi Deda Cloud Cybersecurity Team Vendor Homepage: https://www.crowdstrike.com/ Author Homepage...

CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token Vulnerability

Exploit Title: CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token Exploit Author: Walter Oberacher, Raffaele Nacca, Davide Bianchin, Fortunato Lodari, Luca Bernardi Deda Cloud Cybersecurity Team Vendor Homepage: https://www.crowdstrike.com/ Author Homepage:...

CrowdStrike Falcon Agent 6.44.15806 Uninstall Issue

Exploit Title: CrowdStrike Falcon AGENT 6.44.15806 - Uninstall without Installation Token Date: 30/11/2022 Exploit Author: Walter Oberacher, Raffaele Nacca, Davide Bianchin, Fortunato Lodari, Luca Bernardi Deda Cloud Cybersecurity Team Vendor Homepage: https://www.crowdstrike.com/ Author Homepage...