196 matches found
EUVD-2026-2933
Remote command injection vulnerability in heap profiler builtin service in Apache bRPC all versions 1.15.0 on all platforms allows attacker to inject remote command. Root Cause: The bRPC heap profiler built-in service /pprof/heap does not validate the user-provided extraoptions parameter and...
PT-2026-2933
Name of the Vulnerable Software and Affected Versions Palo Alto Networks PAN-OS versions 10.1 through 12.1 Prisma Access versions 10.2 through 11.2 Description A vulnerability exists in Palo Alto Networks PAN-OS software and Prisma Access when GlobalProtect is enabled. This flaw allows an...
ECHO-2933-1E79-AF27
Bulletin has no description...
CVE-2019-2933 vulnerabilities
Vulnerabilities for packages: openjdk...
CVE-2025-2933
The Email Notifications for Updates plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the awunimportsettings function in all versions up to, and including, 1.1.6. This makes it possible for...
CVE-2025-2933
creationtimestamp| type| source ---|---|--- 2025-04-05 02:36:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10591 2025-04-05 03:48:22+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114283308691761771 2025-04-05 03:48:22+00:00| seen|...
CVE-2025-2933
The Email Notifications for Updates plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the awunimportsettings function in all versions up to, and including, 1.1.6. This makes it possible for...
CVE-2025-2933 Email Notifications for Updates <= 1.1.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update
The Email Notifications for Updates plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the awunimportsettings function in all versions up to, and including, 1.1.6. This makes it possible for...
CVE-2025-2933
The CVE-2025-2933 entry concerns the Email Notifications for Updates WordPress plugin. Root cause: missing capability check in awun_import_settings(), affecting all versions up to 1.1.6. This allows authenticated attackers with Subscriber-level access and above to modify arbitrary WordPress optio...
CVE-2025-2933 Email Notifications for Updates <= 1.1.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update
The Email Notifications for Updates plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the awunimportsettings function in all versions up to, and including, 1.1.6. This makes it possible for...
Linux Distros Unpatched Vulnerability : CVE-2020-2933
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 5.1.48 and prior. Difficult to...
Linux Distros Unpatched Vulnerability : CVE-2017-2933
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability related to texture compression. Successful exploitation could...
CentOS 6 : kernel (RHSA-2020:2933)
The remote CentOS Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2933 advisory. - The Linux kernel before 5.4.1 on powerpc allows Information Exposure because the Spectre-RSB mitigation is not in place for all applicable CPUs, aka...
CVE-2024-2933
The Page Builder Gutenberg Blocks – CoBlocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Social Profiles widget in all versions up to, and including, 3.1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...
CVE-2024-2933
CVE-2024-2933 affects the Page Builder Gutenberg Blocks – CoBlocks WordPress plugin. It is a Stored Cross-Site Scripting (XSS) vulnerability via the Social Profiles widget present in all versions up to 3.1.9, caused by insufficient input sanitization and output escaping on user-supplied attribute...
CVE-2024-2933 Page Builder Gutenberg Blocks – CoBlocks <= 3.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Social Profiles
The Page Builder Gutenberg Blocks – CoBlocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Social Profiles widget in all versions up to, and including, 3.1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...
CVE-2019-2933
creationtimestamp| type| source ---|---|--- 2023-11-19 15:56:45+00:00| seen| https://t.me/arpsyndicate/279 2024-01-15 08:11:10+00:00| seen| https://t.me/ctinow/168196...
FreeBSD : electron24 -- multiple vulnerabilities (aae2ab45-2d21-4cd5-a53b-07ec933400ac)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the aae2ab45-2d21-4cd5-a53b-07ec933400ac advisory. - Use after free in Extensions in Google Chrome prior to 114.0.5735.90 allowed an attacker who...
Microsoft Edge (Chromium-Based) Multiple Vulnerabilities-01 (Jun 2023)
This host is missing an important security update according to Microsoft Edge Chromium-Based updates. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
electron24 -- multiple vulnerabilities
Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2023-3079. Security: backported fix for CVE-2023-2933. Security: backported fix for CVE-2023-2932. Security: backported fix for CVE-2023-2931. Security: backported fix for CVE-2023-2936...