MiracleLinux 4 : rpcbind-0.2.0-11.AXS4 (AXSA:2016-006:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2016-006:01 advisory. The rpcbind utility is a server that converts RPC program numbers into universal addresses. It must be running on the host to be able to make RPC calls on a...

MiracleLinux 7 : rpcbind-0.2.0-33.el7 (AXSA:2016-005:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2016-005:01 advisory. The rpcbind utility is a server that converts RPC program numbers into universal addresses. It must be running on the host to be able to make RPC calls on a...

MAL-2025-7236 Malicious code in @crabas0npm/deserunt-dolore-illo (npm)

The package @crabas0npm/deserunt-dolore-illo was found to contain malicious code...

CVE-2025-7236

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...

CVE-2025-7236

CVE-2025-7236 concerns the IrfanView CADImage Plugin, where parsing DWG files can trigger a memory corruption due to lack of validation of user-supplied data. This vulnerability may allow remote code execution with the current process context if a user opens a malicious DWG file or visits a craft...

CVE-2025-7236 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...

Ubuntu: Security Advisory (USN-7236-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CGA-PH82-MCM9-7236

Bulletin has no description...

CGA-QJRV-7236-4M2Q

Bulletin has no description...

WordPress Backup Bolt Plugin <= 1.3.0 is vulnerable to Sensitive Data Exposure

Software Backup Bolt Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.4.0 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-7236 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID dd36f15c489e Credits Dmitrii Ignatyev Required...

CVE-2023-7236

creationtimestamp| type| source ---|---|--- 2024-03-18 20:26:41+00:00| seen| https://t.me/ctinow/210907...

CVE-2023-7236 Backup Bolt <= 1.3.0 - Sensitive Data Exposure

The Backup Bolt WordPress plugin through 1.3.0 is vulnerable to Information Exposure via the unprotected access of debug logs. This makes it possible for unauthenticated attackers to retrieve the debug log which may contain information like system errors which could contain sensitive information...

CVE-2023-7236

Mode C: CVE-2023-7236 affects Backup Bolt WordPress Plugin versions

CVE-2023-7236 Backup Bolt <= 1.3.0 - Sensitive Data Exposure

The Backup Bolt WordPress plugin through 1.3.0 is vulnerable to Information Exposure via the unprotected access of debug logs. This makes it possible for unauthenticated attackers to retrieve the debug log which may contain information like system errors which could contain sensitive information...

RPCBind <= 0.2.1 DoS Vulnerability

RPCBind is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...

CVE-2014-7236

CVE-2014-7236 affects TWiki (lib/TWiki/Plugins.pm) prior to 6.0.1. The vulnerability is an eval injection in the debugenableplugins parameter used during do/view/Main/WebHome, enabling remote Perl code execution with the web server user’s privileges. Evidence across sources (CVE entry, NVD/CIRCL/...

CVE-2014-7236

Eval injection vulnerability in lib/TWiki/Plugins.pm in TWiki before 6.0.1 allows remote attackers to execute arbitrary Perl code via the debugenableplugins parameter to do/view/Main/WebHome...

CVE-2020-7236

creationtimestamp| type| source ---|---|--- 2020-01-20 01:37:38+00:00| seen| https://t.me/cveNotify/335...

CVE-2020-7236

The CVE-2020-7236 issue affects UHP UHP-100 devices with firmware versions 3.4.1.15, 3.4.2.4, and 3.4.3, where a Cross-Site Scripting (XSS) vulnerability exists in the WEB application. The root cause is insufficient validation of client-side data in the Site Setup section’s Site Name field (cw2?t...

CVE-2019-7236

An issue was discovered in idreamsoft iCMS 7.0.13. editor/editor.admincp.php allows admincp.php?app=editor&do=fileManager dir=../ Directory Traversal...