Linux Distros Unpatched Vulnerability : CVE-2022-32547

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte alignment and for type 'float', which requires 4 byte alignment at...

CVE-2025-32547

Cross-Site Request Forgery CSRF vulnerability in gtlwpdev All push notification for WP all-push-notification allows Blind SQL Injection.This issue affects All push notification for WP: from n/a through = 1.5.3...

CVE-2025-32547

creationtimestamp| type| source ---|---|--- 2025-04-09 19:48:58+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114309735026280224...

CVE-2025-32547

Cross-Site Request Forgery CSRF vulnerability in gtlwpdev All push notification for WP all-push-notification allows Blind SQL Injection.This issue affects All push notification for WP: from n/a through = 1.5.3...

CVE-2025-32547

CVE-2025-32547 affects the WordPress plugin “All push notification for WP” (versions up to 1.5.3). The issue is described as a CSRF-to-SQL Injection vulnerability with an unpatched status in the public reports. The connected Wordfence post lists this CVE under “All push notification for WP

CVE-2025-32547 WordPress All push notification for WP Plugin <= 1.5.3 - CSRF to SQL Injection vulnerability

Cross-Site Request Forgery CSRF vulnerability in gtlwpdev All push notification for WP all-push-notification allows Blind SQL Injection.This issue affects All push notification for WP: from n/a through = 1.5.3...

CVE-2025-32547 WordPress All push notification for WP Plugin <= 1.5.3 - CSRF to SQL Injection vulnerability

Cross-Site Request Forgery CSRF vulnerability in gtlwpdev All push notification for WP all-push-notification allows Blind SQL Injection.This issue affects All push notification for WP: from n/a through = 1.5.3...

WordPress All push notification for WP Plugin <= 1.5.3 - CSRF to SQL Injection vulnerability

CSRF to SQL Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin All push notification for WP versions = 1.5.3...

Ubuntu 20.04 LTS / 22.04 LTS : ImageMagick vulnerabilities (USN-6200-2)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6200-2 advisory. USN-6200-1 fixed vulnerabilities in ImageMagick. Unfortunately these fixes were incomplete for Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. This...

USN-6200-2: ImageMagick vulnerabilities

USN-6200-1 fixed vulnerabilities in ImageMagick. Unfortunately these fixes were incomplete for Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. This update fixes the problem. Original advisory details: It was discovered that ImageMagick incorrectly handled the "-authenticate" option for password-protected...

CVE-2024-32547

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Max Bond Code Insert Manager Q2W3 Inc Manager allows Reflected XSS.This issue affects Code Insert Manager Q2W3 Inc Manager: from n/a through 2.5.3...

CVE-2024-32547 WordPress Code Insert Manager (Q2W3 Inc Manager) plugin <= 2.5.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Max Bond Code Insert Manager Q2W3 Inc Manager allows Reflected XSS.This issue affects Code Insert Manager Q2W3 Inc Manager: from n/a through 2.5.3...

CVE-2024-32547

CVE-2024-32547 is a Reflected XSS in the Code Insert Manager (Q2W3 Inc Manager) WordPress plugin. Affected: Code Insert Manager versions n/a through 2.5.3. Root cause: improper neutralization during web page generation. Impact per sources: potential for injection via input; CVSSv3.1 v3.1 metrics ...

CVE-2024-32547 WordPress Code Insert Manager (Q2W3 Inc Manager) plugin <= 2.5.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Max Bond Code Insert Manager Q2W3 Inc Manager allows Reflected XSS.This issue affects Code Insert Manager Q2W3 Inc Manager: from n/a through 2.5.3...

WordPress Code Insert Manager (Q2W3 Inc Manager) Plugin <= 2.5.3 is vulnerable to Cross Site Scripting (XSS)

Software Code Insert Manager Q2W3 Inc Manager Type Plugin Vulnerable versions = 2.5.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32547 Patch priority Medium CVSS severity Medium 5.8 Developer Claim ownership PSID c408b8a3e4fc Credits Dimas Maulana...

SUSE: Security Advisory (SUSE-SU-2023:4634-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-32547

creationtimestamp| type| source ---|---|--- 2023-08-11 07:26:36+00:00| seen| https://t.me/cibsecurity/68281...

CVE-2023-32547

Incorrect default permissions in the MAVinci Desktop Software for IntelR Falcon 8+ before version 6.2 may allow authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-32547

Incorrect default permissions in the MAVinci Desktop Software for IntelR Falcon 8+ before version 6.2 may allow authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-32547

The CVE-2023-32547 issue affects MAVinci Desktop Software for Intel® Falcon 8+ prior to version 6.2. The root cause is incorrect default permissions in the MAVinci Desktop software, which could allow an authenticated local user to escalate privileges. CVSS vectors indicate a local attack with low...