CVE-2026-7056

creationtimestamp| type| source ---|---|--- 2026-05-29 11:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmyfgas2ct2g...

CVE-2026-7056

A vulnerability was detected in Tenda F456 1.0.0.5. Impacted is the function fromSafeUrlFilter of the file /goform/SafeUrlFilter of the component httpd. The manipulation of the argument page results in buffer overflow. The attack may be performed from remote. The exploit is now public and may be...

CVE-2026-7056

Affected product: Tenda F456 (firmware 1.0.0.5). Vulnerable component: httpd, function fromSafeUrlFilter in /goform/SafeUrlFilter. Issue: manipulation of the argument page leads to a buffer overflow. Exploitability: remote, with public exploit available. Impact: high-severity across confidentiali...

CVE-2025-7056

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation Mediawiki - UrlShortener Extension allows Stored XSS.This issue affects Mediawiki - UrlShortener Extension: from 1.42.X before 1.42.7, from 1.43.X before 1.43.2...

CVE-2025-7056

creationtimestamp| type| source ---|---|--- 2025-07-07 15:32:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltf47ttoll2r...

Linux Distros Unpatched Vulnerability : CVE-2016-7056

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A timing attack flaw was found in OpenSSL 1.0.1u and before that could allow a malicious user with local access to recover ECDSA P-256 private keys. CVE-2016-70...

CVE-2024-7056

creationtimestamp| type| source ---|---|--- 2024-11-25 06:17:19+00:00| seen| https://infosec.exchange/users/cve/statuses/113542131773212483...

CVE-2024-7056 WPForms < 1.9.1.6 - Admin+ Stored XSS

The WPForms WordPress plugin before 1.9.1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as Admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-7056

CVE-2024-7056 affects WPForms for WordPress (pre-1.9.1.6). The issue is caused by insufficient sanitization/escaping of certain settings, enablingStored XSS by high-privilege users (e.g., Administrator) even when unfiltered_html is disabled (such as in multisite setups). The Red Hat and CVE lists...

Ubuntu: Security Advisory (USN-7056-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 20.04 LTS : Firefox vulnerabilities (USN-7056-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7056-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially explo...

CVE-2023-7056 code-projects Faculty Management System subjects.php cross site scripting

A vulnerability classified as problematic was found in code-projects Faculty Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/pages/subjects.php. The manipulation of the argument Description/Units leads to cross site scripting. The attack can be...

CVE-2023-7056

The CVE-2023-7056 entry concerns code-projects Faculty Management System 1.0. The vulnerability is a Cross-Site Scripting flaw in the unknown functionality of /admin/pages/subjects.php, triggered by manipulating the Description/Units argument. It can be exploited remotely and the exploit has been...

SUSE: Security Advisory (SUSE-SU-2017:0495-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:2933-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:0461-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-7056

CVE-2019-7056 affects Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2017.011.30113 and earlier, and 2015.006.30464 and earlier. The issue is an out-of-bounds read vulnerability that could lead to information disclosure if exploited. The connected documents confirm the affected pro...

Adobe Reader < 2019.010.20091 / 2017.011.30120 / 2015.006.30475 Multiple Vulnerabilities (APSB19-07) (macOS)

The version of Adobe Reader installed on the remote macOS host is prior to 2019.010.20091, 2017.011.30120, 2015.006.30475. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB19-07 advisory. - Buffer Errors potentially leading to Arbitrary Code Execution CVE-2019-7020,...

Adobe Acrobat Reader DC (Continuous Track) Security Updates (APSB19-07) - Windows

Adobe Acrobat Reader DC Continuous Track is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Adobe Acrobat DC (Continuous Track) Security Updates (APSB19-07) - Mac OS X

Adobe Acrobat DC Continuous Track is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...