VulnCheck KEV: CVE-2024-11350

The AdForest theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 5.1.6. This is due to the plugin not properly validating a user's identity prior to updating their password through the adforestresetpassword function. This makes it...

VulnCheck KEV: CVE-2024-11349

The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to, and including, 5.1.6. This is due to the plugin not properly verifying a user's identity prior to authenticating them through the sbloginuserwithotpfun function. This makes it possible for unauthenticat...

PT-2026-6314

Name of the Vulnerable Software and Affected Versions Espressif Internet of Things IOT Development Framework versions 5.1.6 through 5.5.2 Description The Espressif Internet of Things IOT Development Framework contains a flaw in the WPS Wi-Fi Protected Setup Enrollee implementation. Malformed...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004422)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004422 advisory. In the Linux kernel before 5.1.6, there is a use-after-free in serialirinitmodule in drivers/media/rc/serialir.c. Tenable has extracted the preceding description blo...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004404)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004404 advisory. mwifiextmcmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c in the Linux kernel before 5.1.6 has some error-handling cases that did not free allocated hostcmd...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004036)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004036 advisory. In the Linux kernel before 5.1.6, there is a use-after-free in cpia2exit in drivers/media/usb/cpia2/cpia2v4l.c that will cause denial of service, aka CID-dea37a97265...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000475)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000475 advisory. mwifiextmcmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c in the Linux kernel before 5.1.6 has some error-handling cases that did not free allocated hostcmd...

VulnCheck KEV: CVE-2024-5276

A SQL Injection vulnerability in Fortra FileCatalyst Workflow allows an attacker to modify application data. Likely impacts include creation of administrative users and deletion or modification of data in the application database. Data exfiltration via SQL injection is not possible using this...

EUVD-2016-7462

Malware in sbrugna...

EUVD-2019-4451

Malware in sbrugna...

EUVD-2002-1958

Malware in sbrugna...

EUVD-2025-26230

Malicious code in bioql PyPI...

CVE-2025-57104

Teampel 5.1.6 is vulnerable to SQL Injection in /Common/login.aspx...

CVE-2025-52861

A path traversal vulnerability has been reported to affect VioStor. If a remote attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: VioStor 5.1.6...

CVE-2025-52861

CVE-2025-52861 is a path-traversal vulnerability affecting QNAP VioStor. A remote attacker with an administrator account could read unexpected files or system data. The issue has been fixed in VioStor version 5.1.6 build 20250621 and later. Available connected sources consistently describe the vu...

CVE-2025-52856 VioStor

An improper authentication vulnerability has been reported to affect VioStor. If a remote attacker, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the following version: VioStor 5.1.6 build 20250621 and later...

CVE-2025-52856

The CVE-2025-52856 vulnerability affects QNAP VioStor. Description confirms an improper authentication flaw that could allow a remote attacker to compromise the system. The issue is addressed in VioStor 5.1.6 build 20250621 and later, which GPT notes as the fixed version. Connected sources consis...

PT-2025-35294

Name of the Vulnerable Software and Affected Versions: VioStor versions prior to 5.1.6 build 20250621 Description: A path traversal vulnerability exists in VioStor. A remote attacker gaining administrator access can potentially read the contents of unexpected files or system data. Recommendations...

PT-2025-35293

Name of the Vulnerable Software and Affected Versions VioStor versions prior to 5.1.6 build 20250621 Description An improper authentication issue has been reported in VioStor, potentially allowing a remote attacker to compromise system security. Recommendations Update to VioStor version 5.1.6 bui...

Linux Distros Unpatched Vulnerability : CVE-2019-19966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 5.1.6, there is a use-after-free in cpia2exit in drivers/media/usb/cpia2/cpia2v4l.c that will cause denial of service, aka...