CVE-2026-7030

creationtimestamp| type| source ---|---|--- 2026-04-26 12:51:15+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mkflu2lplo2w 2026-04-30 18:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mkqb27wzhk2o...

MAL-2025-7030 Malicious code in 8.9.4 (npm)

The package 8.9.4 was found to contain malicious code...

CVE-2025-7030

creationtimestamp| type| source ---|---|--- 2025-07-08 21:18:35+00:00| seen| Telegram/JOIjVXJhJAik01e6f-cLCFVQLiFloPpAiyeTdipHXBl7uvU...

Linux Distros Unpatched Vulnerability : CVE-2016-7030

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeIPA uses a default password policy that locks an account after 5 unsuccessful authentication attempts, which allows remote attackers to cause a denial of...

CVE-2020-7030

creationtimestamp| type| source ---|---|--- 2024-10-28 14:39:24+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1227...

Ubuntu: Security Advisory (USN-7030-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 22.04 LTS : py7zr vulnerability (USN-7030-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-7030-1 advisory. It was discovered that py7zr was vulnerable to path traversal attacks. If a user or automated system were tricked into extracting a specially crafted 7z archive, ...

CVE-2024-7030

creationtimestamp| type| source ---|---|--- 2024-08-21 09:01:43+00:00| seen| https://t.me/cvedetector/3731...

CVE-2024-7030 Smart Online Order for Clover <= 1.5.6 - Missing Authorization to Authenticated (Subscriber+) Plugin Data Update

The Smart Online Order for Clover plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to, and including, 1.5.6. This makes it possible for authenticated attackers, with Subscriber-level access and above,...

CVE-2024-7030 Smart Online Order for Clover <= 1.5.6 - Missing Authorization to Authenticated (Subscriber+) Plugin Data Update

The Smart Online Order for Clover plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to, and including, 1.5.6. This makes it possible for authenticated attackers, with Subscriber-level access and above,...

CVE-2023-7030

The Collapse-O-Matic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'expand' shortcode in all versions up to, and including, 1.8.5.5 due to insufficient input sanitization and output escaping on the 'tag' user supplied attribute. This makes it possible for...

CVE-2023-7030

The CVE-2023-7030 entry concerns the Collapse-O-Matic WordPress plugin (jquery-collapse-o-matic) with stored XSS via the plugin’s expand shortcode. Affected versions are all up to 1.8.5.5. The issue arises from insufficient input sanitization and output escaping of the tag attribute, enabling aut...

WordPress Collapse-O-Matic Plugin <= 1.8.5.5 is vulnerable to Cross Site Scripting (XSS)

Software Collapse-O-Matic Type Plugin Vulnerable versions = 1.8.5.5 Fixed in 1.8.5.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-7030 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 84e3b2610143 Credits Richard Telleng...

Ubuntu: Security Advisory (USN-4792-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:2933-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Avaya IP Office 11 - Password Disclosure

Exploit Title: Avaya IP Office 11 - Password Disclosure Exploit Author: hyp3rlinx Date: 2020-06-09 Vender Homepage: https://downloads.avaya.com Product Link: https://downloads.avaya.com/css/P8/documents/101067493 CVE: CVE-2020-7030 + Credits: John Page aka hyp3rlinx + Website:...

Avaya IP Office 11 Insecure Transit / Password Disclosure Vulnerability

Avaya IP Office versions 9.1.8.0 through 11 suffer from an insecure transit vulnerability that allows for password disclosure. + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source:...

CVE-2020-7030

Avaya IP Office web interface is affected by CVE-2020-7030. Affected: IP Office components 9.x, 10.0–10.1.0.7, and 11.0–11.0.4.3. The vulnerability is a sensitive information disclosure due to issues in the web interface, with exploitation demonstrated via insecure transit/password disclosure (no...

Huawei EulerOS: Security Advisory for ipa (EulerOS-SA-2017-1013)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-7030

Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017.011.30113 and earlier version, and 2015.006.30464 and earlier have an integer overflow vulnerability. Successful exploitation could lead to information disclosure...