CVE-2026-2902

creationtimestamp| type| source ---|---|--- 2026-04-29 15:11:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mknf2z2skm2p...

CVE-2026-2902

The CVE-2026-2902 entry concerns the WordPress plugin WP Meteor Website Speed Optimization Addon. Affected component: the plugin’s frontend_rewrite logic uses a WPMETEOR[N]WPMETEOR placeholder, with insufficient input sanitization and output escaping, making all versions up to 3.4.16 vulnerable t...

Security information for Hitachi Disk Array Systems

Overview A vulnerability exists in the management gui maintenance utility of Hitachi Disk Array Systems that involves improper authorization vulnerability. CVE-2025-2902 Impact Regarding the impact of the vulnerability, please refer to the vendor advisory. Solution Please refer to the 'Vendor...

Amazon Linux 2 : postgresql (ALAS-2025-2902)

The version of postgresql installed on the remote host is prior to 9.2.24-8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2902 advisory. Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of...

CVE-2023-2902

A vulnerability was found in NFine Rapid Development Platform 20230511. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /SystemManage/Organize/GetTreeGridJson?search=false=1681813520783=10000=1==asc. The manipulation leads to improper access...

CVE-2020-2902

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

CVE-2024-2902

A vulnerability was found in Tenda AC7 15.03.06.44 and classified as critical. This issue affects the function fromSetWifiGusetBasic of the file /goform/WifiGuestSet. The manipulation of the argument shareSpeed leads to stack-based buffer overflow. The attack may be initiated remotely. The exploi...

CVE-2024-2902

CVE-2024-2902 affects Tenda AC7 firmware version 15.03.06.44. The vulnerability is in the function fromSetWifiGusetBasic within /goform/WifiGuestSet, where manipulating the shareSpeed argument causes a stack-based buffer overflow. Exploitation can be performed remotely and the vulnerability has b...

CVE-2014-2902

creationtimestamp| type| source ---|---|--- 2024-02-26 09:12:05+00:00| seen| https://t.me/ctinow/193176...

MAL-2024-433 Malicious code in wlwz-2312-2902 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da8481e470c8fb3c78dd38b15cf1ac8de2e6a56a3618353715e2067515844803 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in wlwz-2312-2902 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da8481e470c8fb3c78dd38b15cf1ac8de2e6a56a3618353715e2067515844803 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2019-2902

creationtimestamp| type| source ---|---|--- 2024-01-09 15:17:19+00:00| seen| https://t.me/ctinow/165051...

CVE-2020-2902

creationtimestamp| type| source ---|---|--- 2023-11-29 11:01:08+00:00| seen| https://t.me/arpsyndicate/721...

CVE-2023-2902

CVE-2023-2902 affects NFine Rapid Development Platform (version 20230511). The issue lies in the GetTreeGridJson endpoint under SystemManage/Organize, enabling improper access controls that could be exploited remotely. Public exploit information exists per the sources, with confidentiality impact...

SUSE CVE-2010-2902

The SVG implementation in Google Chrome before 5.0.375.125 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors...

SUSE CVE-2020-2902

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

Debian DLA-2902-1 : graphicsmagick - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-2902 advisory. - GraphicsMagick through 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c. CVE-2020-12672 Note that Nessus has not tested for this issue but has...

Mageia: Security Advisory (MGASA-2013-0278)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:2902-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:2902-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...