12 matches found
CVE-2026-31017
A Server-Side Request Forgery SSRF vulnerability exists in the Print Format functionality of ERPNext v16.0.1 and Frappe Framework v16.1.1, where user-supplied HTML is insufficiently sanitized before being rendered into PDF. When generating PDFs from user-controlled HTML content, the application...
CVE-2022-31017
Zulip is an open-source team collaboration tool. Versions 2.1.0 through and including 5.2 are vulnerable to a logic error. A stream configured as private with protected history, where new subscribers should not be allowed to see messages sent before they were subscribed, when edited causes the...
WordPress Nav Menu Manager plugin <= 3.2.5 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Nav Menu Manager versions = 3.2.5...
CVE-2025-31017
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Robert Noakes Nav Menu Manager noakes-menu-manager allows Stored XSS.This issue affects Nav Menu Manager: from n/a through = 3.2.5...
CVE-2025-31017
creationtimestamp| type| source ---|---|--- 2025-04-09 16:48:48+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11116...
CVE-2023-31017
creationtimestamp| type| source ---|---|--- 2023-11-02 21:23:01+00:00| seen| https://t.me/cibsecurity/73476...
CVE-2023-31017
CVE-2023-31017 : NVIDIA GPU Display Driver for Windows contains a vulnerability that allows an attacker to write arbitrary data to privileged locations via reparse points, potentially enabling code execution, DoS, privilege escalation, information disclosure, or data tampering. Public documentati...
Security Bulletin: NVIDIA GPU Display Driver - October 2023
NVIDIA has released a software security update for NVIDIA GPU Display Driver to address the issues that are disclosed in this bulletin. To protect your system, download and install this software update through the NVIDIA Driver Downloads page or, for the vGPU software and Cloud Gaming updates,...
CVE-2022-31017 Expression Always True vulnerability in Zulip Server
Zulip is an open-source team collaboration tool. Versions 2.1.0 through and including 5.2 are vulnerable to a logic error. A stream configured as private with protected history, where new subscribers should not be allowed to see messages sent before they were subscribed, when edited causes the...
CVE-2022-31017
Zulip Server contains a logic error in versions 2.1.0 through 5.2 where a private stream with protected history, upon edits, erroneously causes an API event that includes the edited message to all current subscribers. The issue stems from the server sending the edited message via an API event to ...
CVE-2021-31017
CVE-2021-31017 is a rejected CVE entry and does not represent an active vulnerability.
CVE-2021-31017
...