CVE-2026-33549

SPIP 4.4.10 through 4.4.12 before 4.4.13 allows unintended privilege assignment of administrator privileges during the editing of an author data structure because of STATUT mishandling...

CVE-2026-33549

SPIP 4.4.10 through 4.4.12 before 4.4.13 allows unintended privilege assignment of administrator privileges during the editing of an author data structure because of STATUT mishandling...

CVE-2026-22205

SPIP versions prior to 4.4.10 contain an authentication bypass vulnerability caused by PHP type juggling that allows unauthenticated attackers to access protected information. Attackers can exploit loose type comparisons in authentication logic to bypass login verification and retrieve sensitive...

CVE-2026-22205

SPIP versions prior to 4.4.10 contain an authentication bypass vulnerability caused by PHP type juggling that allows unauthenticated attackers to access protected information. Attackers can exploit loose type comparisons in authentication logic to bypass login verification and retrieve sensitive...

CVE-2026-22205

SPIP versions prior to 4.4.10 contain an authentication bypass vulnerability caused by PHP type juggling that allows unauthenticated attackers to access protected information. Attackers can exploit loose type comparisons in authentication logic to bypass login verification and retrieve sensitive...

Wireshark Security Update (wnpa-sec-2025-06) - Windows

Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...

CVE-2025-13499

Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service...

PT-2025-47665

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.4.0 through 4.4.10 Wireshark version 4.6.0 Description A flaw exists in the Kafka dissector of Wireshark that can lead to a denial of service. This occurs when processing specially crafted, malformed Kafka packets. Protoco...

CVE-2025-55757

A unauthenticated reflected XSS vulnerability in VirtueMart 1.0.0-4.4.10 for Joomla was discovered...

VirtueMart 安全漏洞

VirtueMart is an open source e-commerce application from VirtueMart, Inc. designed to be used as an extension to Mambo or Joomla! A security vulnerability exists in VirtueMart versions 1.0.0 through 4.4.10, which stems from an unauthenticated reflected cross-site scripting attack...

CVE-2025-55757

A unauthenticated reflected XSS vulnerability in VirtueMart 1.0.0-4.4.10 for Joomla was discovered...

CVE-2025-55757

A unauthenticated reflected XSS exists in VirtueMart versions 1.0.0 through 4.4.10 for Joomla. The issue arises from an input-output handling flaw that allows script injection and execution in the context of the victim’s browser when viewing vulnerable pages. Affected component: VirtueMart core p...

CVE-2025-55757 Extension - virtuemart.net - XSS in VirtueMart component 1.0.0 - 4.4.10 for Joomla

A unauthenticated reflected XSS vulnerability in VirtueMart 1.0.0-4.4.10 for Joomla was discovered...

CVE-2025-55757 Extension - virtuemart.net - XSS in VirtueMart component 1.0.0 - 4.4.10 for Joomla

A unauthenticated reflected XSS vulnerability in VirtueMart 1.0.0-4.4.10 for Joomla was discovered...

OPENSUSE-SU-2025:15636-1 libwireshark18-4.4.10-2.1 on GA media

These are all security issues fixed in the libwireshark18-4.4.10-2.1 package on the GA media of openSUSE Tumbleweed...

Wireshark Security Update (wnpa-sec-2025-04) - Windows

Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...

EUVD-2024-45790

Malicious code in bioql PyPI...

EUVD-2023-31234

Malicious code in bioql PyPI...

CVE-2024-51667

Missing Authorization vulnerability in paytiumsupport Paytium paytium.This issue affects Paytium: from n/a through = 4.4.10...

WordPress plugin AppPresser – Mobile App Framework 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...