CVE-2025-49436 WordPress Anotte theme <= 1.8 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in CocoBasic Anotte anotte-wp allows PHP Local File Inclusion.This issue affects Anotte: from n/a through = 1.8...

WordPress Custom Menu plugin <= 1.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by muhammad yudha Patchstack Alliance in WordPress Plugin Custom Menu versions = 1.8...

CVE-2022-49436

In the Linux kernel, the following vulnerability has been resolved: powerpc/paprscm: Fix leaking nvdimmeventsmap elements Right now 'char ' elements allocated for individual 'statid' in 'paprscmpriv.nvdimmeventsmap' during paprscmpmucheckevents, get leaked in paprscmremove and paprscmpmuregister,...

CVE-2023-49436

creationtimestamp| type| source ---|---|--- 2023-12-30 18:31:59+00:00| seen| https://t.me/ctinow/160946...

CVE-2023-49436

Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList...

CVE-2023-49436

CVE-2023-49436 affects Tenda AX9 with firmware version V22.03.01.46. The vulnerability is a command injection in the 'list' parameter of the API endpoint /goform/SetNetControlList . Multiple sources corroborate a critical impact (CVSS v3.1 base score 9.8; AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Doc...

Microsoft Windows Script Host 'wshesn.dll' DLL装载任意代码执行漏洞

Bugtraq ID: 49436 Windows Scripting Host是一款Windows操作系统脚本语言程序。 Windows Scripting Host wscript.exe不安全装载wshesn.dll库，攻击者可以诱使用户在远程WebDAV或SMB共享上打开js, jse, vbe, vbs, wsf, wsh文件，可以以用户安全上下文装载任意库。 Microsoft Windows Script Host 5.6 厂商解决方案 目前没有详细解决方案提供： http://www.microsoft.com...