CVE-2026-7426

creationtimestamp| type| source ---|---|--- 2026-04-29 23:00:39+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mko7cisnyw2n 2026-05-04 14:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mkztt3kj2m2h...

CVE-2026-7426

The CVE-2026-7426 entry concerns the IPv6 Router Advertisement handling in FreeRTOS-Plus-TCP. Insufficient validation of the prefix length field in Router Advertisement processing allows memory corruption (heap buffer overflow) on the affected stack when processing RA messages. Affected versions ...

MINI-8GPF-7426-FWXR

Bulletin has no description...

MiracleLinux 7 : java-11-openjdk-11.0.22.0.7-1.el7 (AXSA:2024-7426:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7426:01 advisory. OpenJDK: array out-of-bounds access due to missing range check in C1 compiler 8314468 CVE-2024-20918 OpenJDK: RSA padding issue and timing...

MiracleLinux 7 : ntp-4.2.6p5-25.1.0.1.el7.AXS7 (AXSA:2017-1296:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1296:01 advisory. The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which...

MiracleLinux 4 : ntp-4.2.6p5-10.2.0.1.AXS4 (AXSA:2017-1289:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1289:01 advisory. The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which...

CVE-2025-7426

creationtimestamp| type| source ---|---|--- 2025-08-25 10:09:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lx7qznwgqw27 2025-08-25 10:31:37+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lx7sbqivtx2u 2025-08-25 13:36:17+00:00| seen|...

MAL-2025-7426 Malicious code in @crabas0npm/numquam-culpa-a (npm)

The package @crabas0npm/numquam-culpa-a was found to contain malicious code...

RockyLinux 9 : nodejs:20 (RLSA-2025:7426)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7426 advisory. c-ares: c-ares has a use-after-free in readanswers CVE-2025-31498 Tenable has extracted the preceding description block directly from the RockyLinux security...

Oracle Linux 9 : nodejs:20 (ELSA-2025-7426)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7426 advisory. nodejs 1:20.19.1-1 - Update to version 20.19.1 Resolves: RHEL-78764 1:20.18.2-3 - Update c-ares to 1.34.5 to address CVE-2025-31498 nodejs-nodemon...

Ubuntu: Security Advisory (USN-7426-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : poppler vulnerabilities (USN-7426-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7426-1 advisory. It was discovered that poppler incorrectly handled memory when opening certain PDF files. An attacker could possibly use...

GHSA-2R9W-7426-5QWR vulnerabilities

Vulnerabilities for packages: mysql...

CVE-2024-7426

creationtimestamp| type| source ---|---|--- 2024-09-25 05:57:31+00:00| seen| https://t.me/cvedetector/6282...

CVE-2024-7426 Community by PeepSo – Social Network, Membership, Registration, User Profiles <= 6.4.6.0 - Unauthenticated Full Path Disclosure

The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 6.4.6.0. This is due to the plugin displaying errors and allowing direct access to the sse.php file. This makes it...

CVE-2024-7426 Community by PeepSo – Social Network, Membership, Registration, User Profiles <= 6.4.6.0 - Unauthenticated Full Path Disclosure

The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 6.4.6.0. This is due to the plugin displaying errors and allowing direct access to the sse.php file. This makes it...

WordPress Community by PeepSo Plugin <= 6.4.6.0 is vulnerable to Full Path Disclosure (FPD)

Software Community by PeepSo Type Plugin Vulnerable versions = 6.4.6.0 Fixed in 6.4.6.1 OWASP Top 10 A5: Security Misconfiguration Classification Full Path Disclosure FPD CVE CVE-2024-7426 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID e8c8d9f82099 Credits stealthcopter...

SUSE CVE-2016-7426

NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote attackers to cause a denial of service prevent responses from the sources by sending responses with a spoofed source address...

Slackware: Security Advisory (SSA:2016-326-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:3193-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...