CVE-2026-40607

creationtimestamp| type| source ---|---|--- 2026-05-22 22:26:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmhy4qh5k52t...

MantisBT 2.1.0 < 2.28.2 Saved-Filter Owner Column Stored XSS (GHSA-f633-865q-2mhh)

The version of MantisBT installed on the remote host is 2.1.0 or later but prior to 2.28.2. It is, therefore, affected by a vulnerability: - MantisBT is Vulnerable to Stored XSS in Saved-Filter Owner Column. CVE-2026-40607 Note that Nessus has not tested for this issue but has instead relied only...

MAL-2025-40607 Malicious code in yonder_szvw5_xuzh2_yacht (npm)

The package yonderszvw5xuzh2yacht was found to contain malicious code...

CVE-2022-40607

IBM Spectrum Scale 5.1 could allow users with permissions to create pod, persistent volume and persistent volume claim to access files and directories outside of the volume, including on the host filesystem. IBM X-Force ID: 235740...

Security Bulletin: A vulnerability in IBM Spectrum Scale CSI could allow unauthorized access (CVE-2022-40607)

Summary A security vulnerability has been identified in IBM Spectrum Scale CSI that could allow unauthorized access. A fix for this vulnerability is available. Vulnerability Details CVEID:CVE-2022-40607 DESCRIPTION: IBM Spectrum Scale could allow users with permissions to create pod, persistent...

Linux Distros Unpatched Vulnerability : CVE-2021-40607

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The schmboxsize function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command. CVE-2021-40607 Note that Nessus...

CVE-2023-40607

creationtimestamp| type| source ---|---|--- 2023-10-06 18:13:40+00:00| seen| https://t.me/cibsecurity/71726...

CVE-2023-40607

CVE-2023-40607 is a CSRF vulnerability in the WordPress plugin CLUEVO LMS, E-Learning Platform , affecting versions ≤ 1.10.0 . The issue could enable an unauthenticated attacker to trigger actions on behalf of a user; remediation is to upgrade to version 1.11.0 or newer . Public sources show vary...

CVE-2023-40607 WordPress CLUEVO LMS, E-Learning Platform Plugin <= 1.10.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in CLUEVO CLUEVO LMS, E-Learning Platform plugin = 1.10.0 versions...

CVE-2023-40607 WordPress CLUEVO LMS, E-Learning Platform Plugin <= 1.10.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in CLUEVO CLUEVO LMS, E-Learning Platform plugin = 1.10.0 versions...

CVE-2022-40607 IBM Spectrum Scale directory traversal

IBM Spectrum Scale 5.1 could allow users with permissions to create pod, persistent volume and persistent volume claim to access files and directories outside of the volume, including on the host filesystem. IBM X-Force ID: 235740...

CVE-2022-40607

CVE-2022-40607 affects IBM Spectrum Scale CSI (2.6.0 and CNSA 5.1.4.0 or earlier). Affected component: CSI allowing users with permissions to create pods, persistent volumes, and PVCs to access files/directories outside the intended volume, including host filesystem. Root cause described as direc...

CVE-2022-40607 IBM Spectrum Scale directory traversal

IBM Spectrum Scale 5.1 could allow users with permissions to create pod, persistent volume and persistent volume claim to access files and directories outside of the volume, including on the host filesystem. IBM X-Force ID: 235740...

CVE-2021-40607

creationtimestamp| type| source ---|---|--- 2022-06-28 16:36:12+00:00| seen| https://t.me/cibsecurity/45294...

CVE-2021-40607

The schmboxsize function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command...

CVE-2021-40607

The CVE-2021-40607 issue affects GPAC 1.0.1, where the schm_box_size function can be triggered by a crafted file processed by MP4Box, leading to a denial of service. Public sources consistently describe the vulnerability as a DoS condition without indicating exploitable code execution. Affected c...