WordPress Support Board plugin < 3.8.9 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Phat RiO in WordPress Plugin Support Board versions 3.8.9...

Astra Linux - уязвимость в python3.7

There is a flaw in Python 3’s pydoc documentation. A local or nearby attacker who discovers or can convince another local or nearby user to start a pydoc server could access the server and use it to disclose sensitive information belonging to that user that they would not normally be able to...

Debian dsa-6281 : gnutls-bin - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6281 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6281-1 [email protected]...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000986)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000986 advisory. The perfsweventinit function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type, which allows local users to gain privilege...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000756)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000756 advisory. Integer overflow in the fbmmap function in drivers/video/fbmem.c in the Linux kernel before 3.8.9, as used in a certain Motorola build of Android 4.1.2 and other...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001961)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001961 advisory. arch/x86/kernel/cpu/perfeventintel.c in the Linux kernel before 3.8.9, when the Performance Events Subsystem is enabled, specifies an incorrect bitmask, which allows...

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

EUVD-2023-56210

Malicious code in bioql PyPI...

EUVD-2024-30256

Malicious code in bioql PyPI...

CVE-2024-32438

Cross-Site Request Forgery CSRF vulnerability in cleverplugins.Com SEO Booster.This issue affects SEO Booster: from n/a through 3.8.9...

CVE-2023-51497

Missing Authorization vulnerability in Woo WooCommerce Ship to Multiple Addresses.This issue affects WooCommerce Ship to Multiple Addresses: from n/a through 3.8.9...

CVE-2016-10953

The Headway theme before 3.8.9 for WordPress has XSS via the license key field...

CVE-2025-4537

A vulnerability was found in yangzongzhuan RuoYi-Vue up to 3.8.9 and classified as problematic. Affected by this issue is some unknown functionality of the file ruoyi-ui/jsencrypt.js and ruoyi-ui/login.vue of the component Password Handler. The manipulation leads to cleartext storage of sensitive...

CVE-2023-51497

Missing Authorization vulnerability in Woo WooCommerce Ship to Multiple Addresses.This issue affects WooCommerce Ship to Multiple Addresses: from n/a through 3.8.9...

WordPress plugin WooCommerce Ship to Multiple Addresses security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the WordPre...

PT-2024-14156 · Woocommerce · Woocommerce Ship To Multiple Addresses

Name of the Vulnerable Software and Affected Versions: WooCommerce Ship to Multiple Addresses versions 3.8.9 and earlier Description: The issue is related to a Missing Authorization vulnerability. This vulnerability affects the Woo WooCommerce Ship to Multiple Addresses plugin. Recommendations: F...

CVE-2024-32438

Cross-Site Request Forgery CSRF vulnerability in cleverplugins.Com SEO Booster.This issue affects SEO Booster: from n/a through 3.8.9...

CVE-2024-32438

Cross-Site Request Forgery CSRF vulnerability in cleverplugins.Com SEO Booster.This issue affects SEO Booster: from n/a through 3.8.9...

WordPress SEO Booster plugin <= 3.8.9 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin SEO Booster versions = 3.8.9...

WordPress SEO Booster Plugin < 3.8.9 is vulnerable to Cross Site Scripting (XSS)

Software SEO Booster Type Plugin Vulnerable versions 3.8.9 Fixed in 3.8.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f88d0b59f7d6 Credits Rafie Muhammad Patchstack Required...