8 matches found
CVE-2026-53436 vulnerabilities
Vulnerabilities for packages: jenkins...
CVE-2026-53436
Jenkins 2.567 and earlier, LTS 2.555.2 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins when it contains relative path segments ./ or ../, allowing attackers to perform phishing attacks...
CVE-2026-53436
Jenkins 2.567 and earlier, LTS 2.555.2 and earlier improperly determines that a redirect URL after login is legitimately pointing to Jenkins when it contains relative path segments ./ or ../, allowing attackers to perform phishing attacks...
CVE-2025-53436
creationtimestamp| type| source ---|---|--- 2026-01-20 20:21:25+00:00| seen| Telegram/O5cTMdMI2E3YepeNmgKCAvoPMtqfHrLeCYqiHkfdN-gOtg...
CVE-2025-53436 WordPress Monki theme <= 2.0.5 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme Monki monki allows PHP Local File Inclusion.This issue affects Monki: from n/a through = 2.0.5...
CVE-2023-53436
In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name allocated by devsetname needs be freed. As the comment of deviceadd says, putdevice should be used to give up the reference in the error...
CVE-2023-53436
creationtimestamp| type| source ---|---|--- 2025-09-18 16:45:28+00:00| seen| Telegram/q3B5XcDFT6p09AfXpNMjWhv-yRsX5FazrojQKQgQEevr66I...
CVE-2023-53436
In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name allocated by devsetname needs be freed. As the comment of deviceadd says, putdevice should be used to give up the reference in the error...