CVE-2023-32645

A leftover debug code vulnerability exists in the httpd debug credentials functionality of Yifan YF325 v1.020221108. A specially crafted network request can lead to authentication bypass. An attacker can send a network request to trigger this vulnerability...

CVE-2022-32645

In vow, there is a possible information disclosure due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07494477; Issue ID: ALPS07494477...

CVE-2025-32645

Cross-Site Request Forgery CSRF vulnerability in Hiren Patel Custom Posts Order custom-posts-order allows Stored XSS.This issue affects Custom Posts Order: from n/a through = 4.4...

CVE-2025-32645

Cross-Site Request Forgery CSRF vulnerability in Hiren Patel Custom Posts Order custom-posts-order allows Stored XSS.This issue affects Custom Posts Order: from n/a through = 4.4...

CVE-2025-32645 WordPress Custom Posts Order Plugin <= 4.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Hiren Patel Custom Posts Order custom-posts-order allows Stored XSS.This issue affects Custom Posts Order: from n/a through = 4.4...

CVE-2025-32645

CVE-2025-32645 : Affects WordPress plugin Custom Posts Order . Described as a CSRF to Stored Cross‑Site Scripting vulnerability with impact described as stored XSS. Affected versions: up to 4.4 (from the vulnerability entry). The provided documents do not include exploitation details, affected co...

WordPress Custom Posts Order Plugin <= 4.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

CSRF to Stored Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Custom Posts Order versions = 4.4...

2vyper (=0.3.0), ape-dasy (=0.1.0) +28 more potentially affected by CVE-2024-32645 via vyper (>=0.1.0b12 <=0.3.9)

vyper PYPI version =0.1.0b12, =0.7.1, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =0.1.0, =0.7.2, =0.1.10.0, =1.0.1, =0.1.0, =1.4.0, =1.20.6 and more Source cves: CVE-2024-32645 Source advisory: OSV:GHSA-XCHQ-W5R3-4WG3...

CVE-2024-32645 vyper performs incorrect topic logging in raw_log

Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions 0.3.10 and prior, incorrect values can be logged when rawlog builtin is called with memory or storage arguments to be used as topics. A contract search was performed and no vulnerable contracts were found in...

CVE-2023-32645

creationtimestamp| type| source ---|---|--- 2023-10-11 20:17:39+00:00| seen| https://t.me/cibsecurity/72112 2023-10-12 19:17:31+00:00| seen| https://t.me/truesecator/4958 2025-02-04 14:55:17+00:00| seen| https://infosec.exchange/users/cve/statuses/113946192548589563 2025-02-04 18:54:42+00:00| see...

CVE-2023-32645

CVE-2023-32645 describes a leftover debug code vulnerability in the httpd debug credentials functionality of Yifan YF325 v1.0_20221108 . A specially crafted network request can lead to an authentication bypass with very high impact (CVSS v3.1: 3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H; base score 9...

CVE-2022-32645

In vow, there is a possible information disclosure due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07494477; Issue ID: ALPS07494477...

CVE-2022-32645

CVE-2022-32645 affects vow and describes a race condition that could lead to local information disclosure with SYSTEM privileges required. Exploitation does not require user interaction. The CVE entry cites a patch ID ALPS07494477 (issue ALPS07494477) as the remediation. Multiple connected source...

CVE-2021-32645

CVE-2021-32645 affects the open source Tenancy multi-tenant (Laravel) and describes an open redirect vulnerability. The issue occurs in configurations using the default Hostname Identification with tenants that have force_https set to true. Version 5.7.2 includes patches to fix the bug by strippi...