CVE-2026-54193

Contributor Arbitrary File Deletion in Fusion Builder = 3.15.4 versions...

CVE-2026-54194

Contributor PHP Object Injection in Fusion Builder = 3.15.4 versions...

CVE-2026-54193 WordPress Fusion Builder plugin <= 3.15.4 - Arbitrary File Deletion vulnerability

Contributor Arbitrary File Deletion in Fusion Builder = 3.15.4 versions...

CVE-2026-54194 WordPress Fusion Builder plugin <= 3.15.4 - PHP Object Injection vulnerability

Contributor PHP Object Injection in Fusion Builder = 3.15.4 versions...

CVE-2026-54194

CVE-2026-54194 concerns the WordPress Fusion Builder plugin, affected versions ≤ 3.15.4, with a PHP Object Injection vulnerability identified in the CVE record. The provided information confirms the affected component (Fusion Builder), the vulnerable version range, and the nature of the issue (PH...

Important: Red Hat Security Advisory: Red Hat Quay 3.15.4

Red Hat Quay 3.15.4 is now available with bug fixes. Quay 3.15.4...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001939)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001939 advisory. The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call tha...

RHEA-2025:0507 Red Hat Enhancement Advisory: Advisory for publishing Helm 3.15.4 GA release

Bulletin has no description...

Moderate: Red Hat Enhancement Advisory: Advisory for publishing Helm 3.15.4 GA release

GA release of Helm 3.15.4 for OpenShift Container Platform 4.17 version. This errata advisory is for publishing the GA release of Helm 3.15.4 for OpenShift Container Platform 4.17 version...

SUSE CVE-2014-1490

Race condition in libssl in Mozilla Network Security Services NSS before 3.15.4, as used in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, SeaMonkey before 2.24, and other products, allows remote attackers to cause a denial of service use-after-free or possibl...

Input validation

CFEngine Enterprise 3.15.0 through 3.15.4 has Missing SSL Certificate Validation...

SUSE: Security Advisory (SUSE-SU-2014:0342-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Octopus Deploy Directory Traversal Vulnerability

In Octopus Deploy, an authenticated user with PackagePush permission to upload packages could upload a maliciously crafted NuGet package, potentially overwriting other packages or modifying system files. This is a directory traversal in the PackageId value. SPDX-FileCopyrightText: 2017 Greenbone ...

SuSE 11.3 Security Update : openssl-certs (SAT Patch Number 8924)

The openssl-certs package was updated to match the certificates contained in the Mozilla NSS 3.15.4 release. Following changes were done to the list of root CAs : - Added: ACCVRAIZ1.pem Spain all trusts - Added: SGTRUSTSERVICESRACINE.pem Singapore email signing only - Added: TWCAGlobalRootCA.pem...

Fedora 19 : nss-3.15.4-1.fc19 / nss-softokn-3.15.4-1.fc19 / nss-util-3.15.4-1.fc19 (2014-1100)

Update of the nss, nss-softokn, and nss-util packages to nss-3.15.4, a patch release for NSS 3.15 which includes the following security-relevant bug : CVE-2013-1740 When false start is enabled, libssl will sometimes return unencrypted, unauthenticated data from PRRecv For further details refer to...

NSS ticket handling issues — Mozilla

Mozilla developer Brian Smith and security researchers Antoine Delignat-Lavaud and Karthikeyan Bhargavan of the Prosecco research team at INRIA Paris reported issues with ticket handling in the Network Security Services NSS libraries. These have been addressed in the NSS 3.15.4 release, shipping ...

Mandriva Linux Security Advisory : nss (MDVSA-2014:012)

A vulnerability has been discovered and corrected in Mozilla NSS : The sslDo1stHandshake function in sslsecur.c in libssl in Mozilla Network Security Services NSS before 3.15.4, when the TLS False Start feature is enabled, allows man-in-the-middle attackers to spoof SSL servers by using an...

PT-2013-6331 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.15.4 Description: The issue is related to the Linux kernel's handling of non-canonical values for the saved RIP address in system calls that do not use IRET. This can allow local users to leverage a race...