CVE-2026-2940

A vulnerability was determined in Zaher1307 tinywebserver up to 8d77b1044a0ca3a5297d8726ac8aa2cf944d481b. This affects the function tinywebserver/tiny.c of the file tinywebserver/tiny.c of the component URL Handler. This manipulation causes out-of-bounds write. The attack can be initiated remotel...

CVE-2026-2940

A vulnerability was determined in Zaher1307 tinywebserver up to 8d77b1044a0ca3a5297d8726ac8aa2cf944d481b. This affects the function tinywebserver/tiny.c of the file tinywebserver/tiny.c of the component URL Handler. This manipulation causes out-of-bounds write. The attack can be initiated remotel...

CVE-2026-2940

The CVE-2026-2940 entry concerns Zaher1307’s tiny_web_server, specifically the URL Handler implemented in tiny_web_server/tiny.c. The vulnerability is an out-of-bounds write in a function within tiny.c that is reachable via a remote attack. Public exploit details are noted, and the product uses o...

EUVD-2026-2940

In ConnectWise PSA versions older than 2026.1, Time Entry notes stored in the Time Entry Audit Trail may be rendered without applying output encoding to certain content. Under specific conditions, this may allow stored script code to execute in the context of a user’s browser when the affected...

CVE-2018-2940 vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-8-openj9, openjdk-17-openj9, openjdk-11-openj9, openjdk-21-openj9, corretto, openjdk-26-openj9...

CVE-2009-2940

creationtimestamp| type| source ---|---|--- 2025-07-18 13:11:47+00:00| seen| Telegram/e1o90iHJT-k2JGh5790ahxiLQIt4T9bVzKO5ZsUBjDuYtSU...

CVE-2025-2940

creationtimestamp| type| source ---|---|--- 2025-06-27 08:52:07+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19681 2025-06-27 11:01:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lslihekmjc2i...

CVE-2025-2940 Ninja Tables – Easy Data Table Builder <= 5.0.18 - Unauthenticated Server-Side Request Forgery

The Ninja Tables – Easy Data Table Builder plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5.0.18 via the argsurl parameter. This makes it possible for unauthenticated attackers to make web requests to arbitrary locations originating from th...

CVE-2025-2940 Ninja Tables – Easy Data Table Builder <= 5.0.18 - Unauthenticated Server-Side Request Forgery

The Ninja Tables – Easy Data Table Builder plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5.0.18 via the argsurl parameter. This makes it possible for unauthenticated attackers to make web requests to arbitrary locations originating from th...

WordPress Ninja Tables – Easy Data Table Builder plugin <= 5.0.18 - Unauthenticated Server-Side Request Forgery vulnerability

Unauthenticated Server-Side Request Forgery vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Ninja Tables versions = 5.0.18...

CVE-2022-31734

Cisco Catalyst 2940 Series Switches provided by Cisco Systems, Inc. contain a reflected cross-site scripting vulnerability regarding error page generation. An arbitrary script may be executed on the web browser of the user who is using the product. The affected firmware is prior to 12.250SY...

CVE-2019-2940

Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 18c. Easily exploitable vulnerability allows high privileged attacker having Create Session privilege with logon to the infrastructure where Core RDBMS executes to...

CVE-2013-2940

Unspecified vulnerability in Citrix CloudPortal Services Manager aka Cortex 10.0 before Cumulative Update 3 has unknown impact and attack vectors, a different vulnerability than other CVEs listed in CTX137162...

Linux Distros Unpatched Vulnerability : CVE-2018-2940

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 6u191,...

Linux Distros Unpatched Vulnerability : CVE-2009-2940

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The pygresql module 3.8.1 and 4.0 for Python does not properly support the PQescapeStringConn function, which might allow remote attackers to leverage escaping...

CVE-2024-2940

creationtimestamp| type| source ---|---|--- 2025-02-19 22:21:29+00:00| seen| Telegram/oFHuvDMMINGy4IqBR1F4HnSXLotfsEJzAapnHBPBZ5E8LA...

RHEL 6 : oracle_jdk (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Oracle JDK: unspecified vulnerability fixed in 6u191, 7u171, and 8u161 Security CVE-2018-2783 -...

CVE-2019-2940

creationtimestamp| type| source ---|---|--- 2024-01-09 09:36:36+00:00| seen| https://t.me/ctinow/164881...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect IBM Tivoli Netcool Configuration Manager

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Versions 6, 8 and IBM® Runtime Environment Java™ Technology Edition, Versions 6, 8 used by IBM Tivoli Netcool Configuration Manager. These issues were disclosed as part of the IBM Java SDK updates in July 2018...

Microsoft Edge (Chromium-Based) Multiple Vulnerabilities-01 (Jun 2023)

This host is missing an important security update according to Microsoft Edge Chromium-Based updates. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...