CVE-2023-49256

It is possible to download the configuration backup without authorization and decrypt included passwords using hardcoded static key...

CVE-2025-49256

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Sapa sapa allows PHP Local File Inclusion.This issue affects Sapa: from n/a through = 1.1.14...

CVE-2025-49256

creationtimestamp| type| source ---|---|--- 2025-06-17 16:18:28+00:00| seen| Telegram/H8qPUwjr8DSMn0ICOXk--yhIRM42jZjZtgGExUFRvcMjMM 2025-06-18 15:43:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18770...

CVE-2025-49256

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Sapa sapa allows PHP Local File Inclusion.This issue affects Sapa: from n/a through = 1.1.14...

CVE-2025-49256

CVE-2025-49256 concerns the WordPress theme Sapa (thembay Sapa) with unauthenticated Local File Inclusion via improper control of include/require filenames. Affected versions are Sapa

CVE-2025-49256 WordPress Sapa <= 1.1.14 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in thembay Sapa allows PHP Local File Inclusion. This issue affects Sapa: from n/a through 1.1.14...

WordPress Sapa Theme <= 1.1.14 is vulnerable to Local File Inclusion

Software Sapa Type Theme Vulnerable versions = 1.1.14 Fixed in 1.1.15 OWASP Top 10 A4: Insecure Design Classification Local File Inclusion CVE CVE-2025-49256 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 8d080f77bafd Credits Phat RiO - BlueRock Required privilege...

Linux Distros Unpatched Vulnerability : CVE-2022-49256

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: watchqueue: Actually free the watch freewatch does everything barring actually freeing the...

CVE-2022-49256

In the Linux kernel, the following vulnerability has been resolved: watchqueue: Actually free the watch freewatch does everything barring actually freeing the watch object. Fix this by adding the missing kfree. kmemleak produces a report something like the following. Note that as an address can b...

CVE-2022-49256

In the Linux kernel, the following vulnerability has been resolved: watchqueue: Actually free the watch freewatch does everything barring actually freeing the watch object. Fix this by adding the missing kfree. kmemleak produces a report something like the following. Note that as an address can b...

CVE-2022-49256

In the Linux kernel, the following vulnerability has been resolved: watchqueue: Actually free the watch freewatch does everything barring actually freeing the watch object. Fix this by adding the missing kfree. kmemleak produces a report something like the following. Note that as an address can b...

CVE-2022-49256 watch_queue: Actually free the watch

In the Linux kernel, the following vulnerability has been resolved: watchqueue: Actually free the watch freewatch does everything barring actually freeing the watch object. Fix this by adding the missing kfree. kmemleak produces a report something like the following. Note that as an address can b...

CVE-2022-49256

CVE-2022-49256 : In the Linux kernel, the watch_queue memory leak occurs because free_watch() forgets to free the watch object. The fix adds the missing kfree to actually free the watch and prevent the leak (kmemleak reports show an unreferenced object and backtraces through keyctl_watch_key and ...

CVE-2022-49256

In the Linux kernel, the following vulnerability has been resolved: watchqueue: Actually free the watch freewatch does everything barring actually freeing the watch object. Fix this by adding the missing kfree. kmemleak produces a report something like the following. Note that as an address can b...

CVE-2022-49256 watch_queue: Actually free the watch

In the Linux kernel, the following vulnerability has been resolved: watchqueue: Actually free the watch freewatch does everything barring actually freeing the watch object. Fix this by adding the missing kfree. kmemleak produces a report something like the following. Note that as an address can b...

CVE-2024-49256

creationtimestamp| type| source ---|---|--- 2024-11-01 17:01:01+00:00| seen| https://t.me/cvedetector/9586 2026-04-02 11:20:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mij3l36hsx2f...

CVE-2024-49256

Incorrect Authorization vulnerability in WPChill Htaccess File Editor allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Htaccess File Editor: from n/a through 1.0.18...

WordPress Htaccess File Editor Plugin <= 1.0.18 is vulnerable to Broken Access Control

Software Htaccess File Editor Type Plugin Vulnerable versions = 1.0.18 Fixed in 1.0.19 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-49256 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID d6dd94150ebc Credits savphill Require...

CVE-2023-49256 Predictable encryption passphrase used in publicly accessible configuration file

It is possible to download the configuration backup without authorization and decrypt included passwords using hardcoded static key...

CVE-2023-49256 Predictable encryption passphrase used in publicly accessible configuration file

It is possible to download the configuration backup without authorization and decrypt included passwords using hardcoded static key...