11 matches found
EUVD-2025-38726
Malicious code in dandh811 npm...
Linux Distros Unpatched Vulnerability : CVE-2025-38726
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: ftgmac100: fix potential NULL pointer access in ftgmac100phydisconnect After the call to phydisconnect netdev-phydev is reset to NULL. So fixedphyunregiste...
BELL-CVE-2025-38726
Bulletin has no description...
CVE-2025-38726
creationtimestamp| type| source ---|---|--- 2025-09-04 19:54:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxzwfieiie23...
CVE-2025-38726
In the Linux kernel, the following vulnerability has been resolved: net: ftgmac100: fix potential NULL pointer access in ftgmac100phydisconnect After the call to phydisconnect netdev-phydev is reset to NULL. So fixedphyunregister would be called with a NULL pointer as argument. Therefore cache th...
CVE-2025-38726
CVE-2025-38726 affects the Linux kernel driver net ftgmac100. The issue arises in ftgmac100_phy_disconnect: after phy_disconnect(), netdev->phydev is reset to NULL, which could cause fixed_phy_unregister() to be invoked with a NULL pointer. The connected documents confirm this NULL-pointer use...
CVE-2024-38726
Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Designer: from n/a through 1.0.33...
CVE-2024-38726 WordPress Product Designer plugin <= 1.0.33 - Arbitrary Content Deletion vulnerability
Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Designer: from n/a through 1.0.33...
CVE-2024-38726
The CVE-2024-38726 entry concerns WordPress Product Designer plugin versions prior to or equal to 1.0.33, with a Missing Authorization vulnerability that allows Access to functionality not properly constrained by ACLs. The issue affects PickPlugins Product Designer and is documented as an Arbitra...
CVE-2024-38726 WordPress Product Designer plugin <= 1.0.33 - Arbitrary Content Deletion vulnerability
Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Designer: from n/a through 1.0.33...
WordPress Product Designer Plugin <= 1.0.33 is vulnerable to Arbitrary Content Deletion
Software Product Designer Type Plugin Vulnerable versions = 1.0.33 Fixed in 1.0.34 OWASP Top 10 A1: Broken Access Control Classification Arbitrary Content Deletion CVE CVE-2024-38726 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID 863c0e79b2db Credits Emili Castells...