Linux Distros Unpatched Vulnerability : CVE-2026-32700

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Devise is an authentication solution for Rails based on Warden. Prior to version 5.0.3, a race condition in Devise's Confirmable module allows an attacker to...

MiracleLinux 9 : texlive-20200406-26.el9 (AXSA:2023-6081:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6081:02 advisory. texlive: arbitrary code execution allows document complied with older version CVE-2023-32700 Tenable has extracted the preceding description block directly...

Linux Distros Unpatched Vulnerability : CVE-2025-32700

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program file...

NewStart CGSL MAIN 7.02 : texlive-base Vulnerability (NS-SA-2025-0137)

The remote NewStart CGSL host, running version MAIN 7.02, has texlive-base packages installed that are affected by a vulnerability: - LuaTeX before 1.17.0 allows execution of arbitrary shell commands when compiling a TeX file obtained from an untrusted source. This occurs because luatex-core.lua...

Alibaba Cloud Linux 3 : 0153: texlive (ALINUX3-SA-2023:0153)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0153 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-32700: LuaTeX before 1.17.0 allows executi...

MediaWiki 1.43.x < 1.43.1 Information Disclosure Vulnerability - Linux

MediaWiki is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2025-32700

creationtimestamp| type| source ---|---|--- 2025-04-10 21:43:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmihwdatcx2b 2025-04-10 23:43:15+00:00| seen| https://t.me/cvedetector/22679 2025-04-13 15:06:08+00:00| seen|...

CVE-2025-32700

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/Api/QueryAbuseLog.Php, includes/Pager/AbuseLogPager.Php, includes/Special/SpecialAbuseLog.Php,...

CVE-2025-32700

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/Api/QueryAbuseLog.Php, includes/Pager/AbuseLogPager.Php, includes/Special/SpecialAbuseLog.Php,...

CVE-2025-32700

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/Api/QueryAbuseLog.Php, includes/Pager/AbuseLogPager.Php, includes/Special/SpecialAbuseLog.Php,...

CVE-2025-32700 AbuseFilter log interfaces expose global private and hidden filters when central DB is not available

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/Api/QueryAbuseLog.Php, includes/Pager/AbuseLogPager.Php, includes/Special/SpecialAbuseLog.Php,...

CVE-2025-32700

MediaWiki CVE-2025-32700 is an information-disclosure vulnerability affecting MediaWiki 1.43.x before 1.43.1, tied to AbuseFilter and specific PHP files (includes/Api/QueryAbuseLog.Php, includes/Pager/AbuseLogPager.Php, includes/Special/SpecialAbuseLog.Php, includes/View/AbuseFilterViewExamine.Ph...

[SECURITY] [DLA 3946-1] context bugfix update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3946-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès November 05, 2024 https://wiki.debian.org/LTS -...

Debian dla-3946 : context - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-3946 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3946-1 [email protected] https://www.debian.org/lts/security/...

CVE-2024-32700 WordPress Kognetiks Chatbot for WordPress plugin <= 2.0.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Kognetiks Kognetiks Chatbot for WordPress.This issue affects Kognetiks Chatbot for WordPress: from n/a through 2.0.0...

CVE-2024-32700

CVE-2024-32700 – Kognetiks Chatbot for WordPress Unrestricted Upload of File with Dangerous Type in the Kognetiks Chatbot for WordPress plugin affects versions up to 2.0.0 and is unauthenticated. Documented by NVD/Red Hat and Wordfence as a critical issue: allows arbitrary file upload (dangerous ...

CVE-2024-32700 WordPress Kognetiks Chatbot for WordPress plugin <= 2.0.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Kognetiks Kognetiks Chatbot for WordPress.This issue affects Kognetiks Chatbot for WordPress: from n/a through 2.0.0...

WordPress Kognetiks Chatbot for WordPress Plugin <= 2.0.0 is vulnerable to Arbitrary File Upload

Software Kognetiks Chatbot for WordPress Type Plugin Vulnerable versions = 2.0.0 Fixed in 2.0.1 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-32700 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 4fb22828865e Credits LVT-tholv2k Required...

openSUSE: Security Advisory for texlive (SUSE-SU-2023:2284-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 9 : texlive-20200406-26.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the texlive-20200406-26.el9 build changelog. - LuaTeX before 1.17.0 allows execution of arbitrary shell commands when compiling a TeX file obtained from an untrusted source. This occurs...